Stack-based buffer overflow in VUPlayer 2.49 allows remote attackers to execute arbitrary code via a long .asf URI in the HREF attribute of a REF element in a .asx file.
https://www.exploit-db.com/exploits/7715
https://www.exploit-db.com/exploits/7714
https://www.exploit-db.com/exploits/7713
https://www.exploit-db.com/exploits/7709
https://exchange.xforce.ibmcloud.com/vulnerabilities/47851