MPlayer Command Line Processing Overflow

2003-09-01T07:41:35
ID OSVDB:16428
Type osvdb
Reporter OSVDB
Modified 2003-09-01T07:41:35

Description

Technical Description

NOTE: The program 'gmplayer' is not SUID/SGID by default and can not be leveraged for additional privileges as a result of a default installation. This vulnerability only manifests if an administrator adds SUID or SGID privileges to the program, or if another program invokes it with increased privileges.

References:

Vendor URL: http://www.mplayerhq.hu Other Advisory URL: http://www.nosystem.com.ar/advisories/advisory-02.txt