9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.131 Low
EPSS
Percentile
95.5%
Secunia reports:
The vulnerability is caused due to a boundary error within the
“str_read_packet()” function in libavformat/psxstr.c. This can be
exploited to cause a heap-based buffer overflow via a specially
crafted STR file.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | mplayer | < 0.99.11_10 | UNKNOWN |
FreeBSD | any | noarch | mplayer-esound | < 0.99.11_10 | UNKNOWN |
FreeBSD | any | noarch | mplayer-gtk | < 0.99.11_10 | UNKNOWN |
FreeBSD | any | noarch | mplayer-gtk-esound | < 0.99.11_10 | UNKNOWN |
FreeBSD | any | noarch | mplayer-gtk2 | < 0.99.11_10 | UNKNOWN |
FreeBSD | any | noarch | mplayer-gtk2-esound | < 0.99.11_10 | UNKNOWN |