o IMGTech Co,Ltd released security update to address file download vulnerability in Zoneplayer ActiveX Control.
o ZInsX.ocx ActiveX Control in Zoneplayer contains a vulnerability that could allow remote files to be downloaded
and executed by setting the arguments to the activex method. (CVE-2020-7803)
o A remote attacker could induce a user to access a crafted web page, causing damage such as malicious code
□ Affected Product
|ZInsX.ocx ActiveX Control in Zoneplayer
||22.214.171.124 and prior
o Update software over ZInsX.ocx ActiveX Control 126.96.36.199 version or higher.
o Thanks to Donghyun Yu for reporting this vulnerability.
□ 작성 : 침해사고분석단 취약점분석팀