Zoom Player

CVEs (3)

CVE	Risk	CVSS	EPSS	Published	Description
CVE-2007-6533	0.04	—	0.18	Dec 27, 2007	Buffer overflow in Zoom Player 6.00 beta 2 and earlier allows user-assisted remote attackers to execute arbitrary code via an HTTP link to a PLS file in a crafted ZPL file, which causes an overflow in Unicode handling when generating an error message.
CVE-2013-3260	0.00	—	0.03	Mar 3, 2014	Heap-based buffer overflow in INMATRIX Zoom Player before 8.7 beta 11 allows remote attackers to execute arbitrary code via a large biClrUsed value in a BMP file.
CVE-2013-3259	0.00	—	0.06	Mar 3, 2014	Stack-based buffer overflow in INMATRIX Zoom Player before 8.7 beta 11 allows remote attackers to execute arbitrary code via a large biClrUsed value in a BMP file.

CVE-2007-6533Dec 27, 2007
risk 0.04cvss —epss 0.18
Buffer overflow in Zoom Player 6.00 beta 2 and earlier allows user-assisted remote attackers to execute arbitrary code via an HTTP link to a PLS file in a crafted ZPL file, which causes an overflow in Unicode handling when generating an error message.
CVE-2013-3260Mar 3, 2014
risk 0.00cvss —epss 0.03
Heap-based buffer overflow in INMATRIX Zoom Player before 8.7 beta 11 allows remote attackers to execute arbitrary code via a large biClrUsed value in a BMP file.
CVE-2013-3259Mar 3, 2014
risk 0.00cvss —epss 0.06
Stack-based buffer overflow in INMATRIX Zoom Player before 8.7 beta 11 allows remote attackers to execute arbitrary code via a large biClrUsed value in a BMP file.