Lucene search

K
cve[email protected]CVE-2013-0875
HistoryNov 23, 2013 - 5:55 p.m.

CVE-2013-0875

2013-11-2317:55:03
CWE-189
web.nvd.nist.gov
26
cve-2013-0875
out-of-bounds array access
libavcodec
pngdec.c
ffmpeg
nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.4%

The ff_add_png_paeth_prediction function in libavcodec/pngdec.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via a crafted PNG image, related to an out-of-bounds array access.

Affected configurations

NVD
Node
ffmpegffmpegRange1.1.2
OR
ffmpegffmpegMatch0.3
OR
ffmpegffmpegMatch0.3.1
OR
ffmpegffmpegMatch0.3.2
OR
ffmpegffmpegMatch0.3.3
OR
ffmpegffmpegMatch0.3.4
OR
ffmpegffmpegMatch0.4.0
OR
ffmpegffmpegMatch0.4.2
OR
ffmpegffmpegMatch0.4.3
OR
ffmpegffmpegMatch0.4.4
OR
ffmpegffmpegMatch0.4.5
OR
ffmpegffmpegMatch0.4.6
OR
ffmpegffmpegMatch0.4.7
OR
ffmpegffmpegMatch0.4.8
OR
ffmpegffmpegMatch0.5
OR
ffmpegffmpegMatch0.5.1
OR
ffmpegffmpegMatch0.5.2
OR
ffmpegffmpegMatch0.5.3
OR
ffmpegffmpegMatch0.5.4
OR
ffmpegffmpegMatch0.5.4.5
OR
ffmpegffmpegMatch0.5.4.6
OR
ffmpegffmpegMatch0.6
OR
ffmpegffmpegMatch0.6.1
OR
ffmpegffmpegMatch0.6.2
OR
ffmpegffmpegMatch0.6.3
OR
ffmpegffmpegMatch0.7
OR
ffmpegffmpegMatch0.7.1
OR
ffmpegffmpegMatch0.7.2
OR
ffmpegffmpegMatch0.7.3
OR
ffmpegffmpegMatch0.7.4
OR
ffmpegffmpegMatch0.7.5
OR
ffmpegffmpegMatch0.7.6
OR
ffmpegffmpegMatch0.7.7
OR
ffmpegffmpegMatch0.7.8
OR
ffmpegffmpegMatch0.7.9
OR
ffmpegffmpegMatch0.7.11
OR
ffmpegffmpegMatch0.7.12
OR
ffmpegffmpegMatch0.8.0
OR
ffmpegffmpegMatch0.8.1
OR
ffmpegffmpegMatch0.8.2
OR
ffmpegffmpegMatch0.8.5
OR
ffmpegffmpegMatch0.8.5.3
OR
ffmpegffmpegMatch0.8.5.4
OR
ffmpegffmpegMatch0.8.6
OR
ffmpegffmpegMatch0.8.7
OR
ffmpegffmpegMatch0.8.8
OR
ffmpegffmpegMatch0.8.10
OR
ffmpegffmpegMatch0.8.11
OR
ffmpegffmpegMatch0.9
OR
ffmpegffmpegMatch0.9.1
OR
ffmpegffmpegMatch0.10
OR
ffmpegffmpegMatch0.10.3
OR
ffmpegffmpegMatch0.10.4
OR
ffmpegffmpegMatch0.11
OR
ffmpegffmpegMatch1.0
OR
ffmpegffmpegMatch1.1
OR
ffmpegffmpegMatch1.1.1

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.4%