CVE-2013-5716

Gretech GOM Media Player 2.2.53.5169 and possibly earlier allows remote attackers to cause a denial of service (application crash) via a crafted WAV file.

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:N/I:N/A:P

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://www.exploit-db.com/exploits/28080	Exploit
http://www.securityfocus.com/bid/62173

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:gomlab:gom_player::::::::
	cpe:2.3:a:gomlab:gom_player:2.0.6:::::::*
	cpe:2.3:a:gomlab:gom_player:2.0.9:::::::*
	cpe:2.3:a:gomlab:gom_player:2.0.11:::::::*
	cpe:2.3:a:gomlab:gom_player:2.0.12:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.1:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.2:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.3:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.6:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.8:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.9.3753:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.9.3754:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.14.4525:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.15.4610:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.16.4631:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.17.4710:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.18.4762:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.21.4846:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.25.5015:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.27.5031:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.28.5039:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.33.5071:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.37.5085:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.39.5101:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.40.5106:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.43.5119:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.47.5133:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.49.5139:::::::*
	cpe:2.3:a:gomlab:gom_player:2.1.50.5145:::::::*

History

No history.

Information

Published : 2013-09-09 17:55

Updated : 2024-02-04 18:16

NVD link : CVE-2013-5716

Mitre link : CVE-2013-5716

CVE.ORG link : CVE-2013-5716

JSON object : View

Products Affected

gomlab

gom_player

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2013-5716", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2013-09-09T17:55:06.343", "references": [{"url": "http://www.exploit-db.com/exploits/28080", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/62173", "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Gretech GOM Media Player 2.2.53.5169 and possibly earlier allows remote attackers to cause a denial of service (application crash) via a crafted WAV file."}, {"lang": "es", "value": "Gretech GOM Media Player 2.2.53.5169 y posiblemente anteriores permite a un atacante remoto causar una denegaci\u00f3n de servicio (cuelgue de aplicaci\u00f3n) a trav\u00e9s de un archivo WAV manipulado."}], "lastModified": "2013-10-08T16:04:36.187", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gomlab:gom_player:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BE2B1681-4E25-4FD5-89A2-606A0508E36F", "versionEndIncluding": "2.2.53.5169"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69A2E99B-8B6C-4D39-A196-7F7D1424171D"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.0.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E48E0F4D-79BF-42F9-A95C-2BB849808D4E"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.0.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BFA9DCC1-071F-4492-B12C-7029B1A17C0D"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.0.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1709BFD8-62F8-4E4C-BA51-9787A0DEA24F"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C65ECAC-1FCC-4B16-A1BA-3CCC0CE64C2E"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2B58B3D-8E5A-4146-9078-B67CA272DF18"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36AFCA29-3A66-4253-8957-3AEA15E92D75"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "295F383E-1592-4C0F-B1F8-950A56F2AD22"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "353D0E41-4068-4083-96CD-6A52A585344E"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.9.3753:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB55BAE1-52D1-434A-B561-3116B5872BDD"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.9.3754:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59F5D5C9-B423-47C6-9529-5A2A71D92062"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.14.4525:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E879E961-35C4-41BA-A2BC-AF0321038FE8"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.15.4610:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5BA8BA4E-3E85-4B2C-82D3-739BF4287719"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.16.4631:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "259B01B8-ABD5-49CE-94E0-CE6D70647EA2"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.17.4710:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E9A8FC4-9E26-4B0E-AE2B-890727467841"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.18.4762:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D3BA4FE-B4BF-428B-9B42-38C3254AAE7C"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.21.4846:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94B5D090-7F22-461A-BBA2-039827B3C1CD"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.25.5015:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95E048CE-EFA5-4BC8-8434-C27197EB9FD9"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.27.5031:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6A126C57-AA7F-40E0-A736-2B7A322CBAC1"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.28.5039:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A091B7FB-499F-4456-9C84-A5BAF6B5924D"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.33.5071:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C24D09B3-D145-4B9D-97E4-A6AA226AFD33"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.37.5085:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F70A6EA-A414-475A-B24E-D723B4575C37"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.39.5101:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CB2ADB6E-C040-45A6-985B-901C833E6A13"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.40.5106:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39F1DD10-EC69-4F9A-A8C9-4C2043ECFF97"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.43.5119:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F0C20130-8A66-4C16-BD34-46D4F22667C8"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.47.5133:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFCBF075-EF88-4B9D-B5DB-64379FDA1ADC"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.49.5139:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "57E96FBE-8824-467B-9221-1046D8CBF086"}, {"criteria": "cpe:2.3:a:gomlab:gom_player:2.1.50.5145:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B0E43231-5721-4251-8D32-C13F4AC471B1"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}