CVE-2013-7280

HansoTools Hanso Player <2.5.0 - Buffer Overflow

Title source: llm

Description

Buffer overflow in HansoTools Hanso Player 2.1.0, 2.5.0, and earlier allows remote attackers to cause a denial of service (crash) via a long string in a .m3u file.

Exploits (2)

exploitdb STUB VERIFIED

by Necmettin COSKUN · rubydoswindows

https://www.exploit-db.com/exploits/29445

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by metacom · pythondoswindows

https://www.exploit-db.com/exploits/24556

View Code ZIP pw:eip

References (5)

[Exploit] http://www.exploit-db.com/exploits/29445

[Exploit] http://packetstormsecurity.com/files/120611/Hanso-Player-2.1.0-Buffer-Overflow.html

[Exploit] http://www.exploit-db.com/exploits/24556

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/58251

[Third Party Advisory, VDB Entry] http://osvdb.org/show/osvdb/90816

Scores

EPSS 0.1366

EPSS Percentile 94.3%

Details

CWE

CWE-119

Status published

Products (2)

hansotools/hanso_player 2.1.0

hansotools/hanso_player < 2.5.0

Published Jan 08, 2014

Tracked Since Feb 18, 2026