Lucene search
HistoryJan 05, 2013 - 12:55 a.m.
CVE-2011-3937
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.3 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
60.8%
The H.263 codec (libavcodec/h263dec.c) in FFmpeg 0.7.x before 0.7.12, 0.8.x before 0.8.11, and unspecified versions before 0.10, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 has unspecified impact and attack vectors related to “width/height changing with frame threads.”
Affected configurations
Node
ffmpegffmpegMatch0.7.1
ORffmpegffmpegMatch0.7.2
ORffmpegffmpegMatch0.7.3
ORffmpegffmpegMatch0.7.4
ORffmpegffmpegMatch0.7.5
ORffmpegffmpegMatch0.7.6
ORffmpegffmpegMatch0.7.7
ORffmpegffmpegMatch0.7.8
ORffmpegffmpegMatch0.7.9
ORffmpegffmpegMatch0.7.11
Node
ffmpegffmpegMatch0.8.0
ORffmpegffmpegMatch0.8.1
ORffmpegffmpegMatch0.8.2
ORffmpegffmpegMatch0.8.5
ORffmpegffmpegMatch0.8.5.3
ORffmpegffmpegMatch0.8.5.4
ORffmpegffmpegMatch0.8.6
ORffmpegffmpegMatch0.8.7
ORffmpegffmpegMatch0.8.8
ORffmpegffmpegMatch0.8.10
Node
ffmpegffmpegRange≤0.9.1
ORffmpegffmpegMatch0.3
ORffmpegffmpegMatch0.3.1
ORffmpegffmpegMatch0.3.2
ORffmpegffmpegMatch0.3.3
ORffmpegffmpegMatch0.3.4
ORffmpegffmpegMatch0.4.0
ORffmpegffmpegMatch0.4.2
ORffmpegffmpegMatch0.4.3
ORffmpegffmpegMatch0.4.4
ORffmpegffmpegMatch0.4.5
ORffmpegffmpegMatch0.4.6
ORffmpegffmpegMatch0.4.7
ORffmpegffmpegMatch0.4.8
ORffmpegffmpegMatch0.4.9
ORffmpegffmpegMatch0.4.9pre1
ORffmpegffmpegMatch0.5
ORffmpegffmpegMatch0.5.1
ORffmpegffmpegMatch0.5.2
ORffmpegffmpegMatch0.5.3
ORffmpegffmpegMatch0.5.4
ORffmpegffmpegMatch0.5.4.5
ORffmpegffmpegMatch0.5.4.6
ORffmpegffmpegMatch0.6
ORffmpegffmpegMatch0.6.1
ORffmpegffmpegMatch0.6.2
ORffmpegffmpegMatch0.6.3
ORffmpegffmpegMatch0.7
ORffmpegffmpegMatch0.7.1
ORffmpegffmpegMatch0.7.2
ORffmpegffmpegMatch0.7.3
ORffmpegffmpegMatch0.7.4
ORffmpegffmpegMatch0.7.5
ORffmpegffmpegMatch0.7.6
ORffmpegffmpegMatch0.7.7
ORffmpegffmpegMatch0.7.8
ORffmpegffmpegMatch0.7.9
ORffmpegffmpegMatch0.7.11
ORffmpegffmpegMatch0.7.12
ORffmpegffmpegMatch0.8.0
ORffmpegffmpegMatch0.8.1
ORffmpegffmpegMatch0.8.2
ORffmpegffmpegMatch0.8.5
ORffmpegffmpegMatch0.8.5.3
ORffmpegffmpegMatch0.8.5.4
ORffmpegffmpegMatch0.8.6
ORffmpegffmpegMatch0.8.7
ORffmpegffmpegMatch0.8.8
ORffmpegffmpegMatch0.8.10
ORffmpegffmpegMatch0.8.11
ORffmpegffmpegMatch0.9
Node
libavlibavMatch0.5
ORlibavlibavMatch0.5.1
ORlibavlibavMatch0.5.2
ORlibavlibavMatch0.5.3
ORlibavlibavMatch0.5.4
ORlibavlibavMatch0.5.5
ORlibavlibavMatch0.5.6
ORlibavlibavMatch0.5.7
ORlibavlibavMatch0.5.8
Node
libavlibavMatch0.6
ORlibavlibavMatch0.6.1
ORlibavlibavMatch0.6.2
ORlibavlibavMatch0.6.3
ORlibavlibavMatch0.6.4
ORlibavlibavMatch0.6.5
Node
libavlibavMatch0.7
ORlibavlibavMatch0.7beta1
ORlibavlibavMatch0.7beta2
ORlibavlibavMatch0.7.1
ORlibavlibavMatch0.7.2
ORlibavlibavMatch0.7.3
ORlibavlibavMatch0.7.4
Node
libavlibavMatch0.8
ORlibavlibavMatch0.8beta2
Related
debiancve
debiancve
CVE-2011-3937
2013-01-05 00:55:02
ubuntucve
ubuntucve
CVE-2011-3937
2013-01-05 00:00:00
cve
cve
CVE-2011-3937
2013-01-05 00:55:02
prion
prion
Design/Logic Flaw
2013-01-05 00:55:00
cvelist
cvelist
CVE-2011-3937
2013-01-05 00:00:00
nessus
nessus
GLSA-201210-06 : Libav: Multiple vulnerabilities
2012-10-22 00:00:00
Mandriva Linux Security Advisory : ffmpeg (MDVSA-2012:076)
2012-09-06 00:00:00
Mandriva Linux Security Advisory : ffmpeg (MDVSA-2013:079)
2013-04-20 00:00:00
gentoo
gentoo
Libav: Multiple vulnerabilities
2012-10-20 00:00:00
FFmpeg: Multiple vulnerabilities
2013-10-25 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201210-06 (libav)
2012-10-22 00:00:00
Gentoo Security Advisory GLSA 201210-06 (libav)
2012-10-22 00:00:00
Mandriva Update for ffmpeg MDVSA-2012:076 (ffmpeg)
2012-08-03 00:00:00
freebsd
freebsd
gstreamer-ffmpeg -- Multiple vulnerabilities in bundled libav
2013-08-20 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.3 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
60.8%
Related for NVD:CVE-2011-3937