CVE-2006-0579

2006-02-0801:02:00

Debian Security Bug Tracker

security-tracker.debian.org

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.146 Low

EPSS

Percentile

95.7%

JSON

Multiple integer overflows in (1) the new_demux_packet function in demuxer.h and (2) the demux_asf_read_packet function in demux_asf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. NOTE: the provenance of this information is unknown; portions of the details are obtained from third party information.

OSVersionArchitecturePackageVersionFilename
Debian12allmplayer< 2:1.5+svn38408-1mplayer_2:1.5+svn38408-1_all.deb
Debian11allmplayer< 2:1.4+ds1-1+deb11u1mplayer_2:1.4+ds1-1+deb11u1_all.deb
Debian10allmplayer< 2:1.3.0-8mplayer_2:1.3.0-8_all.deb
Debian999allmplayer< 2:1.5+svn38446-2mplayer_2:1.5+svn38446-2_all.deb
Debian13allmplayer< 2:1.5+svn38446-1mplayer_2:1.5+svn38446-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	mplayer	< 2:1.5+svn38408-1	mplayer_2:1.5+svn38408-1_all.deb
Debian	11	all	mplayer	< 2:1.4+ds1-1+deb11u1	mplayer_2:1.4+ds1-1+deb11u1_all.deb
Debian	10	all	mplayer	< 2:1.3.0-8	mplayer_2:1.3.0-8_all.deb
Debian	999	all	mplayer	< 2:1.5+svn38446-2	mplayer_2:1.5+svn38446-2_all.deb
Debian	13	all	mplayer	< 2:1.5+svn38446-1	mplayer_2:1.5+svn38446-1_all.deb