Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-2896

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2009-2896
Last Modified 20 Aug 2009 12:00:00
Published 20 Aug 2009 01:30:11
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-2896

Summary

Buffer overflow in KMplayer 2.9.4.1433 and earlier allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long string in a subtitle (.srt) playlist file. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Kde Kmplayer 2.9.3.1210

  • Kde Kmplayer 2.9.4.1433


References

XF - kmplayer-srt-bo(51882)

VUPEN - ADV-2009-1959

BID - 35745

MILW0RM - 9220


Last Updated: 27 May 2016 10:51:04