Lucene search
CanonicalCVE-2010-3908HistoryMay 20, 2011 - 10:55 p.m.
CVE-2010-3908
2011-05-2022:55:02
CWE-119
canonical
web.nvd.nist.gov
47
ffmpeg
0.5.4
remote attackers
denial of service
execute arbitrary code
wmv file
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
9.7
Confidence
High
EPSS
0.018
Percentile
88.1%
FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a malformed WMV file.
Affected configurations
Node
ffmpegffmpegRangeβ€0.5.3
ORffmpegffmpegMatch0.3
ORffmpegffmpegMatch0.3.1
ORffmpegffmpegMatch0.3.2
ORffmpegffmpegMatch0.3.3
ORffmpegffmpegMatch0.3.4
ORffmpegffmpegMatch0.4.0
ORffmpegffmpegMatch0.4.2
ORffmpegffmpegMatch0.4.3
ORffmpegffmpegMatch0.4.4
ORffmpegffmpegMatch0.4.5
ORffmpegffmpegMatch0.4.6
ORffmpegffmpegMatch0.4.7
ORffmpegffmpegMatch0.4.8
ORffmpegffmpegMatch0.4.9pre1
ORffmpegffmpegMatch0.5
ORffmpegffmpegMatch0.5.1
ORffmpegffmpegMatch0.5.2
mplayerhqmplayer
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ffmpeg | ffmpeg | * | cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:* |
| ffmpeg | ffmpeg | 0.3 | cpe:2.3:a:ffmpeg:ffmpeg:0.3:*:*:*:*:*:*:* |
| ffmpeg | ffmpeg | 0.3.1 | cpe:2.3:a:ffmpeg:ffmpeg:0.3.1:*:*:*:*:*:*:* |
| ffmpeg | ffmpeg | 0.3.2 | cpe:2.3:a:ffmpeg:ffmpeg:0.3.2:*:*:*:*:*:*:* |
| ffmpeg | ffmpeg | 0.3.3 | cpe:2.3:a:ffmpeg:ffmpeg:0.3.3:*:*:*:*:*:*:* |
| ffmpeg | ffmpeg | 0.3.4 | cpe:2.3:a:ffmpeg:ffmpeg:0.3.4:*:*:*:*:*:*:* |
| ffmpeg | ffmpeg | 0.4.0 | cpe:2.3:a:ffmpeg:ffmpeg:0.4.0:*:*:*:*:*:*:* |
| ffmpeg | ffmpeg | 0.4.2 | cpe:2.3:a:ffmpeg:ffmpeg:0.4.2:*:*:*:*:*:*:* |
| ffmpeg | ffmpeg | 0.4.3 | cpe:2.3:a:ffmpeg:ffmpeg:0.4.3:*:*:*:*:*:*:* |
| ffmpeg | ffmpeg | 0.4.4 | cpe:2.3:a:ffmpeg:ffmpeg:0.4.4:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2010-3908
2011-05-20 22:00:00
ubuntucve
ubuntucve
CVE-2010-3908
2011-02-16 00:00:00
nvd
nvd
CVE-2010-3908
2011-05-20 22:55:02
prion
prion
Memory corruption
2011-05-20 22:55:00
seebug
seebug
FFmpegηΈε½’".wmv"ζ仢解ζε
εη ΄εθΏη¨δ»£η ζ§θ‘ζΌζ΄
2011-04-08 00:00:00
debiancve
debiancve
CVE-2010-3908
2011-05-20 22:55:02
osv
osv
ffmpeg - several
2011-09-11 00:00:00
debian
debian
[SECURITY] [DSA 2306-1] ffmpeg security update
2011-09-11 17:17:22
[SECURITY] [DSA 2306-1] ffmpeg security update
2011-09-11 17:17:22
openvas
openvas
Debian Security Advisory DSA 2306-1 (ffmpeg)
2011-09-21 00:00:00
Ubuntu: Security Advisory (USN-1104-1)
2011-04-06 00:00:00
Ubuntu Update for ffmpeg vulnerabilities USN-1104-1
2011-04-06 00:00:00
nessus
nessus
Debian DSA-2306-1 : ffmpeg - several vulnerabilities
2011-09-12 00:00:00
Mandriva Linux Security Advisory : ffmpeg (MDVSA-2011:061)
2011-04-04 00:00:00
ubuntu
ubuntu
FFmpeg vulnerabilities
2011-04-04 00:00:00
securityvulns
securityvulns
[USN-1104-1] FFmpeg vulnerabilities
2011-04-05 00:00:00
gentoo
gentoo
FFmpeg: Multiple vulnerabilities
2013-10-25 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
9.7
Confidence
High
EPSS
0.018
Percentile
88.1%
Related for CVE-2010-3908