漏洞标题
N/A
漏洞描述信息
在 Quintessential Player 4.50.1.82 及其之前版本中,缓冲区溢出允许远程攻击者通过创建(1) M3u 或 (2) M3u-8 文件;或(3) 创建具有长值的 PLS 文件,在(a) Entries 字段、(b) Length (aka Length1) 字段、(c) Filename (aka File1) 字段、(d) Title (aka Title1) 字段或其他未指定字段上执行任意代码。
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Buffer overflow in Quintessential Player 4.50.1.82 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted (1) M3u or (2) M3u-8 file; or a (3) crafted PLS file with a long value in the (a) NumberofEntries, (b) Length (aka Length1), (c) Filename (aka File1), (d) Title (aka Title1) field, or other unspecified fields.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Quinnware Quintessential Player Playlist文件远程内存损坏漏洞
漏洞描述信息
BQuintessential Player存在缓冲区溢出,远程攻击可通过带有在(a)NumberofEntries,(b)Length (aka Length1),(c)Filename(又称File1),(d)Title(又称Title1)字段或其他未明字段内的大值的特制(1)M3u 或(2)M3u-8或(3)PLS文件来发起拒绝服务攻击(崩溃)并可能执行任意代码。
CVSS信息
N/A
漏洞类别
授权问题