Shodan
Vulnerabilities
Vulnerable Software
Gomlab:  Security Vulnerabilities
CVE-2023-53875
GOM Player 2.3.90.5360 contains a remote code execution vulnerability in its Internet Explorer component that allows attackers to execute arbitrary code through DNS spoofing. Attackers can redirect victims using a malicious URL shortcut and WebDAV technique to run a reverse shell with SMB server interaction.
CVSS Score
7.5
EPSS Score
0.004
Published
2025-12-15
CVE-2023-53874
GOM Player 2.3.90.5360 contains a buffer overflow vulnerability in the equalizer preset name input field that allows attackers to crash the application. Attackers can overwrite the preset name with 260 'A' characters to trigger a buffer overflow and cause application instability.
CVSS Score
6.7
EPSS Score
0.001
Published
2025-12-15
CVE-2017-5881
GOM Player 2.3.10.5266 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted fpx file.
CVSS Score
7.8
EPSS Score
0.022
Published
2017-02-21
CVE-2014-3899
Gretech GOM Player 2.2.51.5149 and earlier allows remote attackers to cause a denial of service (launch outage) via a crafted image file.
CVSS Score
4.3
EPSS Score
0.007
Published
2014-08-12
CVE-2014-3216
GOM Media Player 2.2.57.5189 and earlier allows remote attackers to cause a denial of service (crash) via a crafted .ogg file.
CVSS Score
4.3
EPSS Score
0.07
Published
2014-06-10
CVE-2013-7184
Gretech GOM Media Player 2.2.56.5158 and earlier allows remote attackers to cause a denial of service (memory corruption) via a crafted AVI file.
CVSS Score
4.3
EPSS Score
0.122
Published
2014-01-24
CVE-2013-5715
Buffer overflow in Gretech GOM Media Player before 2.2.53.5169 has unspecified impact and attack vectors.
CVSS Score
10.0
EPSS Score
0.003
Published
2013-09-09
CVE-2013-5716
Gretech GOM Media Player 2.2.53.5169 and possibly earlier allows remote attackers to cause a denial of service (application crash) via a crafted WAV file.
CVSS Score
4.3
EPSS Score
0.093
Published
2013-09-09
CVE-2011-5162
Stack-based buffer overflow in GOM Player 2.1.33.5071 allows user-assisted remote attackers to execute arbitrary code via a .ASX file with a long URI in the "ref href" tag. NOTE: this issue exists because of a CVE-2007-0707 regression.
CVSS Score
9.3
EPSS Score
0.36
Published
2012-09-15
CVE-2012-1774
Unspecified vulnerability in the Open URL feature in Gretech GOM Media Player before 2.1.39.5101 has unknown impact and attack vectors, a different vulnerability than CVE-2007-5779 and CVE-2012-1264.
CVSS Score
10.0
EPSS Score
0.047
Published
2012-03-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved