Unrated severityNVD Advisory· Published Jun 11, 2014· Updated May 6, 2026

CVE-2011-3625

Description

Stack-based buffer overflow in the sub_read_line_sami function in subreader.c in MPlayer, as used in SMPlayer 0.6.9, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a SAMI subtitle file.

Affected products

Mplayer2/Mplayer2
cpe:2.3:a:mplayer2:mplayer2:-:*:*:*:*:*:*:*
Ricardo Villalba/Smplayer
cpe:2.3:a:ricardo_villalba:smplayer:0.6.9:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.mplayer2.org/mplayer2/commit/nvdPatch
labs.mwrinfosecurity.com/system/assets/149/original/mwri_mplayer-sami-subtitles_2011-08-12.pdfnvdVendor Advisory
secunia.com/advisories/55486nvd
security.gentoo.org/glsa/glsa-201310-13.xmlnvd
www.openwall.com/lists/oss-security/2011/10/18/12nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.054
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000