Heap-based Buffer Overflow in Gretech GOM Encoder
CVE-2009-1022

Currently unrated

Key Information:

Vendor

Gomlab

Status
Gom Encoder
Vendor
CVE Published:
20 March 2009

What is CVE-2009-1022?

The Gretech GOM Encoder contains a heap-based buffer overflow in the Preview/Set Segment function. This vulnerability allows user-assisted remote attackers to potentially cause memory corruption and application crashes. By exploiting this flaw through a specially crafted subtitle (.srt) file with a long text field, attackers may also execute arbitrary code, posing a significant risk to system integrity and privacy.

References

http://www.securityfocus.com/bid/34120
vdb-entryx_refsource_BID
http://www.securityfocus.com/archive/1/501846/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://security.bkis.vn/?p=352
x_refsource_MISC

EPSS Score

27% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2009-1022 : Heap-based Buffer Overflow in Gretech GOM Encoder