Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-3504
HistorySep 29, 2011 - 12:55 a.m.

CVE-2011-3504

2011-09-2900:55:02
CWE-94
[email protected]
web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.03 Low

EPSS

Percentile

91.0%

JSON

The Matroska format decoder in FFmpeg before 0.8.3 does not properly allocate memory, which allows remote attackers to execute arbitrary code via a crafted file.

Affected configurations

NVD
Node
ffmpegffmpegRange0.8.0
OR
ffmpegffmpegMatch0.3
OR
ffmpegffmpegMatch0.3.1
OR
ffmpegffmpegMatch0.3.2
OR
ffmpegffmpegMatch0.3.3
OR
ffmpegffmpegMatch0.3.4
OR
ffmpegffmpegMatch0.4.0
OR
ffmpegffmpegMatch0.4.2
OR
ffmpegffmpegMatch0.4.3
OR
ffmpegffmpegMatch0.4.4
OR
ffmpegffmpegMatch0.4.5
OR
ffmpegffmpegMatch0.4.6
OR
ffmpegffmpegMatch0.4.7
OR
ffmpegffmpegMatch0.4.8
OR
ffmpegffmpegMatch0.4.9
OR
ffmpegffmpegMatch0.4.9pre1
OR
ffmpegffmpegMatch0.5
OR
ffmpegffmpegMatch0.5.1
OR
ffmpegffmpegMatch0.5.2
OR
ffmpegffmpegMatch0.5.3
OR
ffmpegffmpegMatch0.5.4
OR
ffmpegffmpegMatch0.6
OR
ffmpegffmpegMatch0.6.1
OR
ffmpegffmpegMatch0.6.2

Related

debiancve 1
prion 1
cvelist 1
cve 2
ubuntucve 1
msvr 1
nvd 1
openvas 10
debian 1
nessus 5
securityvulns 1
osv 1
ubuntu 2
debiancve
debiancve
CVE-2011-3504
2011-09-29 00:55:02
prion
prion
Format string
2011-09-29 00:55:00
cvelist
cvelist
CVE-2011-3504
2011-09-29 00:00:00
cve
cve
CVE-2011-3504
2011-09-29 00:55:02
CVE-2011-3586
2019-11-13 18:15:10
ubuntucve
ubuntucve
CVE-2011-3504
2011-09-28 00:00:00
msvr
msvr
Vulnerability in FFmpeg Matroska Format Decoder Could Allow Remote Code Execution
2011-09-20 00:00:00
nvd
nvd
CVE-2011-3586
2019-11-13 18:15:10
openvas
openvas
Debian: Security Advisory (DSA-2336-1)
2012-02-11 00:00:00
Debian Security Advisory DSA 2336-1 (ffmpeg)
2012-02-11 00:00:00
Ubuntu Update for libav USN-1333-1
2012-01-20 00:00:00
debian
debian
[SECURITY] [DSA 2336-1] ffmpeg security update
2011-11-07 19:17:40
nessus
nessus
Debian DSA-2336-1 : ffmpeg - several vulnerabilities
2011-11-08 00:00:00
Ubuntu 11.04 / 11.10 : libav vulnerabilities (USN-1333-1)
2012-01-18 00:00:00
Ubuntu 10.04 LTS / 10.10 : ffmpeg vulnerabilities (USN-1320-1)
2012-01-06 00:00:00
securityvulns
securityvulns
ffmpeg library multiple security vulnerabilities
2011-11-27 00:00:00
osv
osv
ffmpeg - several
2011-11-07 00:00:00
ubuntu
ubuntu
Libav vulnerabilities
2012-01-17 00:00:00
FFmpeg vulnerabilities
2012-01-05 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.03 Low

EPSS

Percentile

91.0%

JSON
Related for NVD:CVE-2011-3504
debiancve1prion1cvelist1cve2ubuntucve1msvr1nvd1openvas10debian1nessus5securityvulns1osv1ubuntu2