VYPR
Vendor

Gretech

Products
4
CVEs
8
Across products
9
Status
Private

Products

4

Recent CVEs

8
  • CVE-2007-5779Nov 1, 2007
    risk 0.09cvss epss 0.72

    Buffer overflow in the GomManager (GomWeb Control) ActiveX control in GomWeb3.dll 1.0.0.12 in Gretech Online Movie Player (GOM Player) 2.1.6.3499 allows remote attackers to execute arbitrary code via a long argument to the OpenUrl method.

  • CVE-2012-1774Mar 18, 2012
    risk 0.04cvss epss 0.07

    Unspecified vulnerability in the Open URL feature in Gretech GOM Media Player before 2.1.39.5101 has unknown impact and attack vectors, a different vulnerability than CVE-2007-5779 and CVE-2012-1264.

  • CVE-2009-1497May 1, 2009
    risk 0.04cvss epss 0.07

    Stack-based buffer overflow in srt2smi.exe in Gretech Online Movie Player (GOM Player) 2.1.16.4635 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long string in an SRT file.

  • CVE-2009-1022Mar 20, 2009
    risk 0.04cvss epss 0.07

    Heap-based buffer overflow in the Preview/ Set Segment function in Gretech GOMlab GOM Encoder 1.0.0.11 and earlier allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a long text field in a…

  • CVE-2013-7184Jan 24, 2014
    risk 0.03cvss epss 0.02

    Gretech GOM Media Player 2.2.56.5158 and earlier allows remote attackers to cause a denial of service (memory corruption) via a crafted AVI file.

  • CVE-2013-5716Sep 9, 2013
    risk 0.03cvss epss 0.02

    Gretech GOM Media Player 2.2.53.5169 and possibly earlier allows remote attackers to cause a denial of service (application crash) via a crafted WAV file.

  • CVE-2014-3899Aug 12, 2014
    risk 0.00cvss epss 0.02

    Gretech GOM Player 2.2.51.5149 and earlier allows remote attackers to cause a denial of service (launch outage) via a crafted image file.

  • CVE-2012-1264Mar 18, 2012
    risk 0.00cvss epss 0.04

    Unspecified vulnerability in Gretech GOM Media Player before 2.1.37.5091 allows remote attackers to execute arbitrary code via a crafted AVI file.