Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kmplayer vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2019-17259
KMPlayer 4.2.2.31 allows a User Mode Write AV starting at utils!src_new+0x000000000014d6ee.
Kmplayer Kmplayer 4.2.2.31
4.3
CVSSv2
CVE-2017-16952
KMPlayer 4.2.2.4 allows remote malicious users to cause a denial of service via a crafted NSV file.
Kmplayer Kmplayer 4.2.2.4
1 EDB exploit
9.3
CVSSv2
CVE-2011-2594
Heap-based buffer overflow in KMPlayer 3.0.0.1441, and possibly other versions, allows remote malicious users to execute arbitrary code via a playlist (.KPL) file with a long Title field.
Kmplayer Kmplayer 3.0.0.1441
9.3
CVSSv2
CVE-2012-3841
Untrusted search path vulnerability in KMPlayer 3.2.0.19 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ehtrace.dll that is located in the current working directory.
Kmplayer Kmplayer 3.2.0.19
9.3
CVSSv2
CVE-2009-2896
Buffer overflow in KMplayer 2.9.4.1433 and previous versions allows remote malicious users to cause a denial of service (application crash) or execute arbitrary code via a long string in a subtitle (.srt) playlist file. NOTE: some of these details are obtained from third party in...
Kde Kmplayer
Kde Kmplayer 2.9.3.1210
1 EDB exploit
4.3
CVSSv2
CVE-2019-9133
When processing subtitles format media file, KMPlayer version 2018.12.24.14 or lower doesn't check object size correctly, which leads to integer underflow then to memory out-of-bound read/write. An attacker can exploit this issue by enticing an unsuspecting user to open a ma...
Kmplayer Kmplayer
Fedoraproject Fedora 29
Fedoraproject Fedora 30
1 Github repository
6.8
CVSSv2
CVE-2018-5200
KMPlayer 4.2.2.15 and previous versions have a Heap Based Buffer Overflow Vulnerability. It could be exploited with a crafted FLV format file. The problem is that more frame data is copied to heap memory than the size specified in the frame header. This results in a memory corrup...
Pandora Kmplayer
7.1
CVSSv2
CVE-2007-4941
KMPlayer 2.9.3.1210 and previous versions allows remote malicious users to cause a denial of service (CPU consumption) via a .avi file with certain large "indx truck size" and nEntriesInuse values.
Kde Kmplayer
1 EDB exploit
NA
CVE-2023-1745
A vulnerability, which was classified as problematic, has been found in KMPlayer 4.2.2.73. This issue affects some unknown processing in the library SHFOLDER.dll. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclose...
Pandora Kmplayer 4.2.2.73
NA
CVE-2014-2985
Kmplayer versions 3.8.0.122 and 3.8.0.123 suffer from a dll hijacking vulnerability.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started