Muris Kurgas

**Name of the Vulnerable Software and Affected Versions** BS.player version 2.27 build 959 **Description** The issue is caused by a buffer overflow that occurs when processing a long string in a .SRT file, allowing remote attackers to cause a denial of service (crash) and possibly execute arbitrary code. **Recommendations** For BS.player version 2.27 build 959, consider avoiding the use of .SRT files with long strings until a patch is available. As a temporary workaround, restrict the processing of .SRT files to minimize the risk of exploitation.