Core Security Technologies Advisory – Ston3D StandalonePlayer and WebPlayer are vulnerable to a command injection vulnerability, which can be exploited by malicious remote attackers. The vulnerability is due to the Ston3D scripting language. It provides the function ‘system.openURL()’ which does not properly sanitize the input before using it. This can be exploited to execute arbitrary commands with the privileges of the Stone3D player by opening a specially crafted file.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/77923/CORE-2009-0401.txt
Source: https://packetstormsecurity.com/files/77923/Core-Security-Technologies-Advisory-2009.0401.html