Gretech GOM Player GomWeb3.DLL Remote Buffer Overflow Vulnerability

Gretech GOM Player GomWeb3.DLL Remote Buffer Overflow Vulnerability

GOM Player is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input.

Successfully exploiting this issue will allow an attacker to execute arbitrary code within the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts will result in a denial-of-service condition.

This issue affects GOM Player 2.1.6.3499; other versions may also be vulnerable.