A vulnerability, which was classified as problematic, has been found in KMPlayer 4.2.2.73. This issue affects some unknown processing in the library SHFOLDER.dll. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The identifier VDB-224633 was assigned to this vulnerability.
References
Link | Resource |
---|---|
https://drive.google.com/file/d/1bdYaDmtWhnjaHkzv3bZ4PUSMzDJ8JjSV/view | Third Party Advisory |
https://github.com/10cksYiqiyinHangzhouTechnology/KMPlayer_Poc | Exploit Third Party Advisory |
https://vuldb.com/?ctiid.224633 | Permissions Required Third Party Advisory |
https://vuldb.com/?id.224633 | Permissions Required Third Party Advisory |
https://youtu.be/7bh2BQOqxFo | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: VulDB
Published: 2023-03-30T23:00:05.358Z
Updated: 2023-10-21T14:13:37.347Z
Reserved: 2023-03-30T19:26:17.934Z
Link: CVE-2023-1745
JSON object: View
NVD Information
Status : Modified
Published: 2023-03-30T23:15:06.520
Modified: 2024-05-17T02:18:24.733
Link: CVE-2023-1745
JSON object: View
Redhat Information
No data.
CWE