Search for vulnerabilities
Vulnerability details: VCID-hfus-s2tr-w3ff
Vulnerability ID VCID-hfus-s2tr-w3ff
Aliases CVE-2011-3625
Summary
Status Published
Exploitability 2.0
Weighted Severity 0.5
Risk 1.0
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
epss 0.56766 https://api.first.org/data/v1/epss?cve=CVE-2011-3625
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2011-3625
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3625
645987 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=645987
OSVDB-74604;CVE-2011-3625 Exploit http://labs.mwrinfosecurity.com/files/Advisories/mwri_mplayer-sami-subtitles_2011-08-12.pdf
OSVDB-74604;CVE-2011-3625 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/18954.rb
Data source Metasploit
Description This module exploits a stack-based buffer overflow found in the handling of SAMI subtitles files in MPlayer SVN Versions before 33471. It currently targets SMPlayer 0.6.8, which is distributed with a vulnerable version of MPlayer. The overflow is triggered when an unsuspecting victim opens a movie file first, followed by loading the malicious SAMI subtitles file from the GUI. Or, it can also be done from the console with the MPlayer "-sub" option.
Note 
Reliability:
  - unknown-reliability
Stability:
  - unknown-stability
SideEffects:
  - unknown-side-effects
Ransomware campaign use Unknown
Source publication date May 19, 2011
Platform Windows
Source URL https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/windows/fileformat/mplayer_sami_bof.rb
Data source Exploit-DB
Date added May 30, 2012
Description MPlayer - '.SAMI' Subtitle File Buffer Overflow (Metasploit)
Ransomware campaign use Known
Source publication date May 30, 2012
Exploit type local
Platform windows
Source update date May 30, 2012
Source URL http://labs.mwrinfosecurity.com/files/Advisories/mwri_mplayer-sami-subtitles_2011-08-12.pdf
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.98014
EPSS Score 0.56766
Published At July 31, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T11:43:47.028694+00:00 EPSS Importer Import https://epss.cyentia.com/epss_scores-current.csv.gz 37.0.0