Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2007-6718
HistoryOct 20, 2008 - 5:59 p.m.

CVE-2007-6718

2008-10-2017:59:23
[email protected]
web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

Low

0.164 Low

EPSS

Percentile

96.0%

JSON

MPlayer, possibly 1.0rc1, allows remote attackers to cause a denial of service (SIGSEGV and application crash) via (1) a malformed MP3 file, as demonstrated by lol-mplayer.mp3; (2) a malformed Ogg Vorbis file, as demonstrated by lol-mplayer.ogg; (3) a malformed MPEG-1 file, as demonstrated by lol-mplayer.mpg; (4) a malformed MPEG-2 file, as demonstrated by lol-mplayer.m2v; (5) a malformed MPEG-4 AVI file, as demonstrated by lol-mplayer.avi; (6) a malformed FLAC file, as demonstrated by lol-mplayer.flac; (7) a malformed Ogg Theora file, as demonstrated by lol-mplayer.ogm; (8) a malformed WMV file, as demonstrated by lol-mplayer.wmv; or (9) a malformed AAC file, as demonstrated by lol-mplayer.aac. NOTE: vector 5 might overlap CVE-2007-4938, and vector 6 might overlap CVE-2008-0486.

Affected configurations

NVD
Node
mplayermplayerRange≀1.0_rc1
OR
mplayermplayerMatch0.90
OR
mplayermplayerMatch0.90_pre
OR
mplayermplayerMatch0.90_rc
OR
mplayermplayerMatch0.90_rc4
OR
mplayermplayerMatch0.91
OR
mplayermplayerMatch0.92
OR
mplayermplayerMatch0.92.1
OR
mplayermplayerMatch0.92_cvs
OR
mplayermplayerMatch1.0_pre1
OR
mplayermplayerMatch1.0_pre2
OR
mplayermplayerMatch1.0_pre3
OR
mplayermplayerMatch1.0_pre3try2
OR
mplayermplayerMatch1.0_pre4
OR
mplayermplayerMatch1.0_pre5
OR
mplayermplayerMatch1.0_pre5try1
OR
mplayermplayerMatch1.0_pre5try2
OR
mplayermplayerMatch1.0_pre6
OR
mplayermplayerMatch1.0_pre7
OR
mplayermplayerMatch1.0_pre7try2

Related

ubuntucve 4
cvelist 4
debiancve 4
prion 4
cve 4
nessus 16
openvas 29
securityvulns 6
nvd 3
seebug 1
coresecurity 1
fedora 2
freebsd 2
gentoo 3
debian 2
osv 2
ubuntu 1
ubuntucve
ubuntucve
CVE-2007-6718
2008-10-20 00:00:00
CVE-2007-4938
2007-09-18 00:00:00
CVE-2008-0486
2008-02-05 00:00:00
cvelist
cvelist
CVE-2007-6718
2022-10-03 16:14:28
CVE-2007-4938
2007-09-18 19:00:00
CVE-2008-0486
2008-02-05 11:00:00
debiancve
debiancve
CVE-2007-6718
2022-10-03 16:14:28
CVE-2007-4938
2007-09-18 19:17:00
CVE-2008-0486
2008-02-05 12:00:00
prion
prion
Design/Logic Flaw
2008-10-20 17:59:00
Heap overflow
2007-09-18 19:17:00
Buffer overflow
2008-02-05 12:00:00
cve
cve
CVE-2007-6718
2022-10-03 16:14:28
CVE-2007-4938
2007-09-18 19:17:00
CVE-2008-0486
2008-02-05 12:00:00
nessus
nessus
Mandrake Linux Security Advisory : mplayer (MDKSA-2007:192)
2007-10-03 00:00:00
SuSE 10 Security Update : xine (ZYPP Patch Number 5080)
2008-03-13 00:00:00
Fedora 7 : xine-lib-1.1.10.1-1.fc7 (2008-1581)
2008-02-14 00:00:00
openvas
openvas
Mandriva Update for mplayer MDKSA-2007:192 (mplayer)
2009-04-09 00:00:00
Mandriva Update for mplayer MDKSA-2007:192 (mplayer)
2009-04-09 00:00:00
Fedora Update for xine-lib FEDORA-2008-1543
2009-02-16 00:00:00
securityvulns
securityvulns
MPlayer buffer overflow
2007-10-04 00:00:00
[ MDKSA-2007:192 ] - Updated mplayer packages fix vulnerability
2007-10-04 00:00:00
[ MDVSA-2008:046 ] - Updated xine-lib package fixes arbitrary code execution vulnerability
2008-02-16 00:00:00
nvd
nvd
CVE-2007-4938
2007-09-18 19:17:00
CVE-2008-0486
2008-02-05 12:00:00
CVE-2008-4610
2008-10-20 17:59:26
seebug
seebug
MPlayer demux_audio.cθΏœη¨‹ζ ˆζΊ’ε‡ΊζΌζ΄ž
2008-02-14 00:00:00
coresecurity
coresecurity
MPlayer 1.0rc2 Buffer Overflow Vulnerability
2008-02-04 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: xine-lib-1.1.10.1-1.fc8
2008-02-13 05:06:27
[SECURITY] Fedora 7 Update: xine-lib-1.1.10.1-1.fc7
2008-02-13 05:12:05
freebsd
freebsd
libxine -- buffer overflow vulnerability
2007-02-08 00:00:00
mplayer -- multiple vulnerabilities
2008-02-05 00:00:00
gentoo
gentoo
xine-lib: User-assisted execution of arbitrary code
2008-02-26 00:00:00
MPlayer: Multiple buffer overflows
2008-03-10 00:00:00
MPlayer: Multiple vulnerabilities
2013-10-25 00:00:00
debian
debian
[SECURITY] [DSA 1496-1] New mplayer packages fix arbitrary code execution
2008-02-12 22:59:52
[SECURITY] [DSA 1536-1] New libxine packages fix several vulnerabilities
2008-03-31 20:51:58
osv
osv
mplayer - arbitrary code execution
2008-02-12 00:00:00
xine-lib - several vulnerabilities
2008-03-31 00:00:00
ubuntu
ubuntu
xine-lib vulnerabilities
2008-08-06 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

Low

0.164 Low

EPSS

Percentile

96.0%

JSON
Related for NVD:CVE-2007-6718
ubuntucve4cvelist4debiancve4prion4cve4nessus16openvas29securityvulns6nvd3seebug1coresecurity1fedora2freebsd2gentoo3debian2osv2ubuntu1