Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
MPlayer Lite r33064 M3U Stack-Based Buffer Overflow
Vulnerability Description
A stack-based buffer overflow vulnerability exists in MPlayer Lite r33064 due to improper bounds checking when handling M3U playlist files containing long http:// URL entries. An attacker can craft a malicious .m3u file with a specially formatted URL that triggers a stack overflow when processed by the player, particularly via drag-and-drop interaction. This flaw allows for control of the execution flow through SEH overwrite and a DEP bypass using a ROP chain that leverages known gadgets in loaded DLLs. Successful exploitation may result in arbitrary code execution with the privileges of the current user.
CVSS Information
N/A
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
The MPlayer Project MPlayer Lite 安全漏洞
Vulnerability Description
The MPlayer Project MPlayer Lite是The MPlayer Project公司的一款多媒体播放器。 The MPlayer Project MPlayer Lite r33064版本存在安全漏洞,该漏洞源于处理包含长http URL条目的M3U播放列表文件时边界检查不当,可能导致栈缓冲区溢出和任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A