CVE-2020-7803

Name of the Vulnerable Software and Affected Versions Zoneplayer versions 2.0.1.3 and prior versions Zoneplayer version 2.0.1.4

Description The issue allows an attacker to cause arbitrary code execution due to a file download vulnerability in the ZInsX.ocx ActiveX Control of Zoneplayer on Windows.

Recommendations For Zoneplayer versions 2.0.1.3 and prior versions, update to a version later than 2.0.1.3 to resolve the issue. For Zoneplayer version 2.0.1.4, update to a version later than 2.0.1.4 to resolve the issue. As a temporary workaround, consider disabling the ZInsX.ocx ActiveX Control until a patch is available.