VYPR

Kmplayer

by KDE

CVEs (2)

  • CVE-2009-2896Aug 20, 2009
    risk 0.03cvss epss 0.06

    Buffer overflow in KMplayer 2.9.4.1433 and earlier allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long string in a subtitle (.srt) playlist file. NOTE: some of these details are obtained from third party information.

  • CVE-2007-4941Sep 18, 2007
    risk 0.03cvss epss 0.03

    KMPlayer 2.9.3.1210 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a .avi file with certain large "indx truck size" and nEntriesInuse values.