Stack-based Buffer Overflow in GOM Player by Gretech
CVE-2009-1497

Currently unrated

Key Information:

Vendor

Gomlab

Status
Gom Player
Vendor
CVE Published:
1 May 2009

What is CVE-2009-1497?

A stack-based buffer overflow vulnerability exists in the GOM Player version 2.1.16.4635 due to improper handling of SRT file inputs. Attackers can exploit this vulnerability by crafting a long string within an SRT file, leading to a potential crash of the application or the execution of arbitrary code. This flaw emphasizes the need for secure file processing mechanisms to mitigate such risks.

References

http://osvdb.org/53361
vdb-entryx_refsource_OSVDB
https://www.exploit-db.com/exploits/8370
exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/archive/1/502552/100/0/threaded
mailing-listx_refsource_BUGTRAQ

EPSS Score

12% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2009-1497 : Stack-based Buffer Overflow in GOM Player by Gretech