vendor:
Spider Player
by:
ABDI MOHAMED
7,5
CVSS
HIGH
Denial of Service
400
CWE
Product Name: Spider Player
Affected Version From: 2.4.5
Affected Version To: 2.4.5
Patch Exists: YES
Related CWE: N/A
CPE: spider-player
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2020
Spider Player Denial of Service Vulnerability
A denial of service vulnerability exists in Spider Player version 2.4.5. By creating a specially crafted .m3u file containing 666666 'A' characters, an attacker can cause the application to crash.
Mitigation:
Upgrade to the latest version of Spider Player to mitigate this vulnerability.
