CVE-2009-1437

The CVE-2009-1437 issue affects PortableApps CoolPlayer Portable (CoolPlayer+ Portable) up to version 2.19.6 and earlier, where a stack-based buffer overflow in handling .m3u playlist files allows remote code execution via a crafted long string in the playlist. Root cause is a boundary error whil...

CVE-2008-3408

CoolPlayer contains a stack-based buffer overflow in m3u playlist handling (filename processing) affecting CoolPlayer 2.18 and potentially other versions. A remote attacker could execute arbitrary code by opening a crafted .m3u file; exploitation relies on the user opening the exploit file and wo...

CVE-2009-1449

CVE-2009-1449 affects PortableApps CoolPlayer Portable (CoolPlayer+ Portable) 2.19.1. Description: stack-based buffer overflow in skin.c via a skin.ini skin PlaylistSkin parameter, enabling remote code execution. It may overlap CVE-2008-5735. No fix/version details provided in the connected docum...

CVE-2007-6609

Summary of CVE-2007-6609 (CPI_PlaylistItem.c, CoolPlayer) : The vulnerability is a chain of stack-based buffer overflows in CPLI_ReadTag_OGG within CPI_PlaylistItem.c affecting CoolPlayer 217 and earlier. A long (cTag or cValue) field in an OGG Vorbis file can allow user-assisted remote code exec...

CVE-2008-5735

CVE-2008-5735: Stack-based buffer overflow in skin.c of CoolPlayer (versions 2.17–2.19) allows remote code execution via a large PlaylistSkin value in a skin file. The vulnerability affects CoolPlayer/skin handling and is documented in multiple sources (e.g., NVD entry CVE-2008-5735) with related...