Published: 09/09/2013 Updated: 08/10/2013

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Gretech GOM Media Player 2.2.53.5169 and possibly earlier allows remote malicious users to cause a denial of service (application crash) via a crafted WAV file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gomlab gom player 2.1.33.5071
gomlab gom player
gomlab gom player 2.1.50.5145
gomlab gom player 2.1.49.5139
gomlab gom player 2.1.47.5133
gomlab gom player 2.1.9.3754
gomlab gom player 2.1.9.3753
gomlab gom player 2.1.8
gomlab gom player 2.1.6
gomlab gom player 2.1.28.5039
gomlab gom player 2.1.25.5015
gomlab gom player 2.1.21.4846
gomlab gom player 2.1.18.4762
gomlab gom player 2.0.11
gomlab gom player 2.0.9
gomlab gom player 2.0.6
gomlab gom player 2.1.27.5031
gomlab gom player 2.1.40.5106
gomlab gom player 2.1.37.5085
gomlab gom player 2.1.17.4710
gomlab gom player 2.1.15.4610
gomlab gom player 2.1.2
gomlab gom player 2.0.12
gomlab gom player 2.1.43.5119
gomlab gom player 2.1.39.5101
gomlab gom player 2.1.16.4631
gomlab gom player 2.1.14.4525
gomlab gom player 2.1.3
gomlab gom player 2.1.1

# Exploit Title: GOMPlayer Version 22535169 (wav) - Crash POC # Date: 03-09-2013 # Exploit Author: ariarat # Software Link: downloadcnetcom/GOM-Media-Player/3000-13632_4-10551786html?part=dl-GOMMediaP&subj=dl&tag=button # Version: 22535169 (Probably old version of software too) # Vendor Homepage: wwwgomlabcom # Tested on: ...

CWE-20 http://www.exploit-db.com/exploits/28080 http://www.securityfocus.com/bid/62173 https://nvd.nist.gov https://www.exploit-db.com/exploits/28080/

CVE-2013-5716

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect