Lucene search

K

[email protected]NVD:CVE-2008-4610

HistoryOct 20, 2008 - 5:59 p.m.

CVE-2008-4610

2008-10-2017:59:26

CWE-399

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

Low

0.141 Low

EPSS

Percentile

95.7%

MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated by lol-ffplay.ogm, different vectors than CVE-2007-6718.

Affected configurations

NVD

Node

mplayermplayerRange≤1.0_rc1

OR

mplayermplayerMatch0.90

OR

mplayermplayerMatch0.90_pre

OR

mplayermplayerMatch0.90_rc

OR

mplayermplayerMatch0.90_rc4

OR

mplayermplayerMatch0.91

OR

mplayermplayerMatch0.92

OR

mplayermplayerMatch0.92.1

OR

mplayermplayerMatch0.92_cvs

OR

mplayermplayerMatch1.0_pre1

OR

mplayermplayerMatch1.0_pre2

OR

mplayermplayerMatch1.0_pre3

OR

mplayermplayerMatch1.0_pre3try2

OR

mplayermplayerMatch1.0_pre4

OR

mplayermplayerMatch1.0_pre5

OR

mplayermplayerMatch1.0_pre5try1

OR

mplayermplayerMatch1.0_pre5try2

OR

mplayermplayerMatch1.0_pre6

OR

mplayermplayerMatch1.0_pre7

OR

mplayermplayerMatch1.0_pre7try2

References

secunia.com/advisories/34296

www.openwall.com/lists/oss-security/2008/10/07/1

www.ubuntu.com/usn/USN-734-1

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

Low

0.141 Low

EPSS

Percentile

95.7%

Related for NVD:CVE-2008-4610

nessus4 openvas5 cve2 debiancve2 prion2 cvelist2 ubuntucve3 gentoo1 nvd1 ubuntu1