Lucene search
HistoryDec 09, 2013 - 4:34 p.m.
CVE-2011-3935
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
6.4 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.3%
The codec_get_buffer function in ffmpeg.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via vectors related to a crafted image size.
Affected configurations
Node
ffmpegffmpegRange≤0.9.1
ORffmpegffmpegMatch0.3
ORffmpegffmpegMatch0.3.1
ORffmpegffmpegMatch0.3.2
ORffmpegffmpegMatch0.3.3
ORffmpegffmpegMatch0.3.4
ORffmpegffmpegMatch0.4.0
ORffmpegffmpegMatch0.4.2
ORffmpegffmpegMatch0.4.3
ORffmpegffmpegMatch0.4.4
ORffmpegffmpegMatch0.4.5
ORffmpegffmpegMatch0.4.6
ORffmpegffmpegMatch0.4.7
ORffmpegffmpegMatch0.4.8
ORffmpegffmpegMatch0.4.9pre1
ORffmpegffmpegMatch0.5
ORffmpegffmpegMatch0.5.1
ORffmpegffmpegMatch0.5.2
ORffmpegffmpegMatch0.5.3
ORffmpegffmpegMatch0.5.4
ORffmpegffmpegMatch0.5.4.5
ORffmpegffmpegMatch0.5.4.6
ORffmpegffmpegMatch0.5.5
ORffmpegffmpegMatch0.6
ORffmpegffmpegMatch0.6.1
ORffmpegffmpegMatch0.6.2
ORffmpegffmpegMatch0.6.3
ORffmpegffmpegMatch0.7
ORffmpegffmpegMatch0.7.1
ORffmpegffmpegMatch0.7.2
ORffmpegffmpegMatch0.7.3
ORffmpegffmpegMatch0.7.4
ORffmpegffmpegMatch0.7.5
ORffmpegffmpegMatch0.7.6
ORffmpegffmpegMatch0.7.7
ORffmpegffmpegMatch0.7.8
ORffmpegffmpegMatch0.7.9
ORffmpegffmpegMatch0.7.11
ORffmpegffmpegMatch0.7.12
ORffmpegffmpegMatch0.8.0
ORffmpegffmpegMatch0.8.1
ORffmpegffmpegMatch0.8.2
ORffmpegffmpegMatch0.8.5
ORffmpegffmpegMatch0.8.5.3
ORffmpegffmpegMatch0.8.5.4
ORffmpegffmpegMatch0.8.6
ORffmpegffmpegMatch0.8.7
ORffmpegffmpegMatch0.8.8
ORffmpegffmpegMatch0.8.10
ORffmpegffmpegMatch0.8.11
ORffmpegffmpegMatch0.9
Related
debiancve
debiancve
CVE-2011-3935
2013-12-09 16:34:28
prion
prion
Design/Logic Flaw
2013-12-09 16:34:00
cvelist
cvelist
CVE-2011-3935
2013-12-09 11:00:00
cve
cve
CVE-2011-3935
2013-12-09 16:34:28
ubuntucve
ubuntucve
CVE-2011-3935
2013-12-09 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201502-08
2015-09-29 00:00:00
Debian Security Advisory DSA 3003-1 (libav - security update)
2014-08-10 00:00:00
Debian: Security Advisory (DSA-3003-1)
2014-08-09 00:00:00
osv
osv
libav - security update
2014-08-10 00:00:00
gentoo
gentoo
Libav: Multiple vulnerabilities
2015-02-07 00:00:00
FFmpeg: Multiple vulnerabilities
2013-10-25 00:00:00
nessus
nessus
GLSA-201502-08 : Libav: Multiple vulnerabilities
2015-02-09 00:00:00
Debian DSA-3003-1 : libav - security update
2014-08-12 00:00:00
GLSA-201310-12 : FFmpeg: Multiple vulnerabilities
2013-10-27 00:00:00
debian
debian
[SECURITY] [DSA 3003-1] libav security update
2014-08-10 21:28:40
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
6.4 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.3%
Related for NVD:CVE-2011-3935