Summary
This host is installed with GOM Media Player and is prone to unspecified vulnerability.
Impact
Successful exploitation could allow attackers to execute arbitrary code in the context of the application.
Impact Level: System/Application
Solution
Upgrade to GOM Media Player 2.1.37.5091 or later,
For updates refer to http://www.gomlab.com/eng/
Insight
The flaw is due to an unspecified error, which allows remote attackers to execute arbitrary code via a crafted AVI file.
Affected
GOM Media Player version prior to 2.1.37.5091 on Windows
References
- http://gom.gomtv.com/gomIntro.html?type=4
- http://heapoverflow.com/f0rums/advisories/29716-cve-2012-1264-gom_media_player.html
- http://osvdb.org/show/osvdb/80202
- http://www.exploitsearch.net/index.php?q=NVD+CVE-2012-1264
- http://www.security-database.com/cvss.php?alert=CVE-2012-1264
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2012-1264 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Air Multiple Vulnerabilities - December12 (Mac OS X)
- Adobe Flash Player 'SWF' File Multiple Code Execution Vulnerability - Windows
- Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Windows)
- Adobe AIR Multiple Vulnerabilities-01 Dec13 (Mac OS X)
- Adobe Acrobat Remote Code Execution Vulnerability(Win)