2019-04-09 17:33:27
krcert
PUBLISHED
When processing subtitles format media file, KMPlayer version 2018.12.24.14 or lower doesnt check object size correctly, which leads to integer underflow then to memory out-of-bound read/write. An attacker can exploit this issue by enticing an unsuspecting user to open a malicious file.