Intrusion Prevention

Gom.Player.OpenUrl.ActiveX.Control.Buffer.Overflow

Description

GOM Player (Gretech Online Movie Player) is South Korea's most popular media player. The GomWeb3.dll file is vulnerable to a remote buffer overflow through the GomWeb ActiveX Control's "OpenURL" method.

Affected Products

GOM Player version 2.1.6.3499 and prior.

Impact

System compromise: remote attackers can gain control of vulnerable systems.

Recommended Actions

No update is available, set the kill bit for CLSID {DC07C721-79E0-4BD4-A89F-C90871946A31}.

CVE References

CVE-2007-5779