CVE-2011-10008

HIGH

MPlayer Lite r33064 - Buffer Overflow

Title source: llm

Description

A stack-based buffer overflow vulnerability exists in MPlayer Lite r33064 due to improper bounds checking when handling M3U playlist files containing long http:// URL entries. An attacker can craft a malicious .m3u file with a specially formatted URL that triggers a stack overflow when processed by the player, particularly via drag-and-drop interaction. This flaw allows for control of the execution flow through SEH overwrite and a DEP bypass using a ROP chain that leverages known gadgets in loaded DLLs. Successful exploitation may result in arbitrary code execution with the privileges of the current user.

Exploits (2)

exploitdb WORKING POC VERIFIED

by C4SS!0 & h1ch4m · perllocalwindows

https://www.exploit-db.com/exploits/17013

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by C4SS!0 and h1ch4m, Gabor Seljan · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/mplayer_m3u_bof.rb

View Code ZIP pw:eip

References (3)

[Various Sources] https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/mplayer_m3u_bof.rb

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/17013

[Third Party Advisory] https://www.vulncheck.com/advisories/mplayer-lite-r33064-m3u-stack-based-buffer-overflow

Scores

CVSS v4 8.6

EPSS 0.4892

EPSS Percentile 97.8%

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Details

CWE

CWE-121 CWE-20

Status published

Products (1)

MPlayer Project/MPlayer Lite r33064

Published Jul 31, 2025

Tracked Since Feb 18, 2026