CNNVD-202508-2514 Information

CNNVD ID

CNNVD-202508-2514

Related CVE

CVE-2011-10025

• CNNVD Published: 2025-08-20

Description (Chinese)

SourceForge Subtitle Processor是SourceForge开源的一款电影字幕处理软件。 SourceForge Subtitle Processor 7.7.1版本存在安全漏洞，该漏洞源于解析.m3u文件时存在缓冲区溢出，可能导致执行任意代码。

Description (English)

SourceForge SubtitleProcessor is an open-source film subtitle processing software. The security loophole in version 7.7.1 of the sourceForge SubtitleProcessor stems from the presence of a buffer zone when the …m3u document is deciphered and may lead to the implementation of any code.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Sourceforge

Published

2025-08-20

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/subtitle-processor-m3u-seh-unicode-buffer-overflow https://www.fortiguard.com/encyclopedia/ips/26849 https://www.exploit-db.com/exploits/17225 https://www.exploit-db.com/exploits/17217 https://sourceforge.net/projects/subtitleproc/ https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/subtitle_processor_m3u_bof.rb https://nvd.nist.gov/vuln/detail/CVE-2011-10025