Stack-based buffer overflow in PortableApps CoolPlayer Portable (aka CoolPlayer+ Portable) 2.19.1 allows remote attackers to execute arbitrary code via a skin file (skin.ini) with a large PlaylistSkin parameter. NOTE: this may overlap CVE-2008-5735.
https://www.exploit-db.com/exploits/8527
https://exchange.xforce.ibmcloud.com/vulnerabilities/50448