Lucene search

[email protected]CVE-2009-1497

HistoryMay 01, 2009 - 4:30 p.m.

CVE-2009-1497

2009-05-0116:30:00

CWE-119

[email protected]

web.nvd.nist.gov

buffer overflow

gom player

cve-2009-1497

denial of service

remote attack

arbitrary code

srt file

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.089 Low

EPSS

Percentile

94.6%

JSON

Stack-based buffer overflow in srt2smi.exe in Gretech Online Movie Player (GOM Player) 2.1.16.4635 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long string in an SRT file.

Affected configurations

NVD

Node

gomlabgom_playerMatch2.1.16

CPENameOperatorVersion
gomlab:gom_playergomlab gom playereq2.1.16

CPE	Name	Operator	Version
gomlab:gom_player	gomlab gom player	eq	2.1.16

References

osvdb.org/53361

secunia.com/advisories/34639

security.bkis.vn/?p=501

www.securityfocus.com/archive/1/502552/100/0/threaded

www.securityfocus.com/bid/34427

www.exploit-db.com/exploits/8370

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.089 Low

EPSS

Percentile

94.6%

JSON

Related for CVE-2009-1497

cvelist1 prion1 nvd1