GOM Player ASX Playlist Buffer Overflow

This one was one I probably wouldn't have noticed if not 1. I recognized the name as something my Korean friends use frequently (and swear by) and 2. the Secunia advisory of the same name, hadn't included ASX. You probably haven't heard of GOM Player (english site) before, but it does appear to be quite popular in Korea and Japan. Like many media players it functions as a stand alone application, but more frequently as a browser plugin. While there's basically no hard information about this vulnerability, I just thought it would be a good reminder of the fact that just because a player might not have a lot of market share in the US doesn't mean it's not popular elsewhere, and therefore the target of attacks.

This issue is assigned CVE-2007-0707, however since the no details were ever released, the CVE is predicated upon the Secunia advisory being correct.