Lucene search

[email protected]CVE-2004-1309

HistoryJan 10, 2005 - 5:00 a.m.

CVE-2004-1309

2005-01-1005:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2004-1309

unix

mplayer

buffer overflow

demux_open_bmp

security vulnerability

nvd

8.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.034 Low

EPSS

Percentile

91.4%

JSON

Heap-based buffer overflow in the demux_open_bmp function in demux_bmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap (BMP) file containing a large biClrUsed field.

CPENameOperatorVersion
mplayer:unix_mplayermplayer unix mplayereq1.0_pre5

CPE	Name	Operator	Version
mplayer:unix_mplayer	mplayer unix mplayer	eq	1.0_pre5

References

www.idefense.com/application/poi/display?id=168

www.mandriva.com/security/advisories?name=MDKSA-2004:157

www1.mplayerhq.hu/MPlayer/releases/ChangeLog

exchange.xforce.ibmcloud.com/vulnerabilities/18527

8.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.034 Low

EPSS

Percentile

91.4%

JSON

Related for CVE-2004-1309

debiancve1 cvelist1 nessus1