Lucene search

K
cveMitreCVE-2011-4031
HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-4031

2022-10-0316:15:13
CWE-191
mitre
web.nvd.nist.gov
35
cve-2011-4031
integer underflow
asfrtp_parse_packet
libavformat
rtpdec_asf.c
ffmpeg
remote code execution

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.017

Percentile

87.8%

Integer underflow in the asfrtp_parse_packet function in libavformat/rtpdec_asf.c in FFmpeg before 0.8.3 allows remote attackers to execute arbitrary code via a crafted ASF packet.

Affected configurations

Nvd
Node
ffmpegffmpegRange<0.8.3

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.017

Percentile

87.8%