Multiple stack-based buffer overflows in the CPLI_ReadTag_OGG function in CPI_PlaylistItem.c in CoolPlayer 217 and previous versions allow user-assisted remote malicious users to execute arbitrary code via a long (1) cTag or (2) cValue field in an OGG Vorbis file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
coolplayer coolplayer 217 |