HIGH
Allplayer
CVE published 2026-06-04
CVE-2019-25735
CVE-2019-25735 is a local buffer overflow vulnerability in AllPlayer 7.4. The vulnerability occurs in the URL handling mechanism, where an excessively long URL string can be used to overwrite structured exception handling (SEH) pointers. This allows attackers to craft a malicious URL, paste it into the Open URL dialog, and trigger SEH-based code execution to run arbitrary commands with user privileges. Th [truncated]