CVE-2013-5716
Gretech GOM Media Player 2.2.53.5169 - Denial of Service via Crafted WAV File
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2013-5716. PoCs published by ariarat.
AI-analyzed exploit summary This exploit generates a malformed .wav file that triggers a crash in GOMPlayer Version 2.2.53.5169 due to improper handling of the file format. The PoC demonstrates a DoS condition by writing a crafted binary string to a file.
Description
Gretech GOM Media Player 2.2.53.5169 and possibly earlier allows remote attackers to cause a denial of service (application crash) via a crafted WAV file.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by ariarat · pythondoswindows
https://www.exploit-db.com/exploits/28080
This exploit generates a malformed .wav file that triggers a crash in GOMPlayer Version 2.2.53.5169 due to improper handling of the file format. The PoC demonstrates a DoS condition by writing a crafted binary string to a file.
Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
GOMPlayer Version 2.2.53.5169
No auth needed
Prerequisites:
Ability to deliver the crafted .wav file to the target system
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (2)
Core 2
Core References
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/28080
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/62173
Scores
EPSS
0.0215
EPSS Percentile
79.8%
Details
CWE
CWE-20
Status
published
Products (29)
gomlab/gom_player
2.0.6
gomlab/gom_player
2.0.9
gomlab/gom_player
2.0.11
gomlab/gom_player
2.0.12
gomlab/gom_player
2.1.1
gomlab/gom_player
2.1.2
gomlab/gom_player
2.1.3
gomlab/gom_player
2.1.6
gomlab/gom_player
2.1.8
gomlab/gom_player
2.1.9.3753
... and 19 more
Published
Sep 09, 2013
Tracked Since
Feb 18, 2026