This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Bsplayer First view 2009-03-26
Product Bs.Player Last view 2010-05-21
Version Type
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:bsplayer:bs.player:2.27:*:*:*:*:*:*:* 1
cpe:2.3:a:bsplayer:bs.player:2.32:free:*:*:*:*:*:* 1
cpe:2.3:a:bsplayer:bs.player:2.34:pro:*:*:*:*:*:* 1
cpe:2.3:a:bsplayer:bs.player:2.51:-:free:*:*:*:*:* 1
cpe:2.3:a:bsplayer:bs.player:2.51:*:*:*:*:*:*:* 1
cpe:2.3:a:bsplayer:bs.player:2.41:*:*:*:*:*:*:* 1

Related : CVE

  Date Alert Description
9.3 2010-05-21 CVE-2010-2009

Stack-based buffer overflow in the media library in BS.Global BS.Player 2.51 build 1022, 2.41 build 1003, and possibly other versions allows user-assisted remote attackers to execute arbitrary code via a long ID3 tag in a .MP3 file. NOTE: some of these details are obtained from third party information.
9.3 2010-05-20 CVE-2010-2004

Stack-based buffer overflow in BS.Global BS.Player 2.51 Build 1022 Free, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via the Skin parameter in the Options section of a skins file (.bsi), a different vulnerability than CVE-2009-1068.
9.3 2009-04-03 CVE-2008-6583

Buffer overflow in BS.player 2.27 build 959 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .SRT file.
9.3 2009-03-26 CVE-2009-1068

Stack-based buffer overflow in BS.Player (bsplayer) 2.32 Build 975 Free and 2.34 Build 980 PRO and earlier allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long hostname in a .bsl playlist file.

CWE : Common Weakness Enumeration

%idName
100% (4) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

Open Source Vulnerability Database (OSVDB)

id Description
64864 BS.Player Media Library MP3 File Handling Overflow
61803 BS.Player BSI File Handling Overflow
53328 BS.player SRT File Handling Overflow
52841 BS.Player BSL File Handling Overflow

OpenVAS Exploits

id Description
2010-05-25 Name : BS.Player '.bsl' File Buffer Overflow Vulnerabilities
File : nvt/secpod_bsplayer_mult_bof_vuln.nasl
2009-04-08 Name : BSPlayer Stack Overflow Vulnerability BLS
File : nvt/gb_bsplayer_bls_bof_vuln.nasl
2009-04-08 Name : BSPlayer Stack Overflow Vulnerability SRT
File : nvt/gb_bsplayer_srt_bof_vuln.nasl