CVE-2024-41200
- EPSS 0.1%
- Published 05.08.2024 17:15:41
- Last modified 18.06.2025 12:28:09
A segmentation fault in KMPlayer v4.2.2.65 allows attackers to cause a Denial of Service (DoS) via a crafted AVI file.
CVE-2019-17259
- EPSS 0.06%
- Published 08.10.2019 12:15:11
- Last modified 21.11.2024 04:31:58
KMPlayer 4.2.2.31 allows a User Mode Write AV starting at utils!src_new+0x000000000014d6ee.
CVE-2019-9133
- EPSS 0.24%
- Published 09.04.2019 18:29:01
- Last modified 21.11.2024 04:51:02
When processing subtitles format media file, KMPlayer version 2018.12.24.14 or lower doesn't check object size correctly, which leads to integer underflow then to memory out-of-bound read/write. An attacker can exploit this issue by enticing an unsus...
CVE-2017-16952
- EPSS 1.25%
- Published 28.11.2017 15:29:00
- Last modified 20.04.2025 01:37:25
KMPlayer 4.2.2.4 allows remote attackers to cause a denial of service via a crafted NSV file.
CVE-2012-3841
- EPSS 1.07%
- Published 03.07.2012 22:55:02
- Last modified 11.04.2025 00:51:21
Untrusted search path vulnerability in KMPlayer 3.2.0.19 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ehtrace.dll that is located in the current working directory.
CVE-2011-2594
- EPSS 5.83%
- Published 02.09.2011 16:55:04
- Last modified 11.04.2025 00:51:21
Heap-based buffer overflow in KMPlayer 3.0.0.1441, and possibly other versions, allows remote attackers to execute arbitrary code via a playlist (.KPL) file with a long Title field.