CNNVD-202507-3897 Information
CNNVD ID
CNNVD-202507-3897
Related CVE
- CNNVD Published: 2025-07-31
Description (Chinese)
The MPlayer Project MPlayer Lite是The MPlayer Project公司的一款多媒体播放器。 The MPlayer Project MPlayer Lite r33064版本存在安全漏洞,该漏洞源于处理包含长http URL条目的M3U播放列表文件时边界检查不当,可能导致栈缓冲区溢出和任意代码执行。
Description (English)
The MPlayer Project MPlayer Lite is a multimedia player for The MPlayer Project. The MPlayer project MPlayer Lite r 33064 has a security loophole, which arises from inadequate border checks when processing M3U playlist files containing long http URL entries, which may lead to spills and arbitrary code execution in the buffer zone.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
The MPlayer Project
Published
2025-07-31
Last Modified
2026-02-24
References
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/mplayer_m3u_bof.rb https://www.exploit-db.com/exploits/17013 https://www.vulncheck.com/advisories/mplayer-lite-r33064-m3u-stack-based-buffer-overflow
Share on: