Lucene search

PRIOn knowledge basePRION:CVE-2009-0893

HistoryJun 02, 2009 - 6:30 p.m.

Heap overflow

2009-06-0218:30:00

PRIOn knowledge base

www.prio-n.com

8.4 High

AI Score

Confidence

Low

0.087 Low

EPSS

Percentile

94.5%

JSON

Multiple heap-based buffer overflows in xvidcore/src/decoder.c in the xvidcore library in Xvid before 1.2.2, as used by Windows Media Player and other applications, allow remote attackers to execute arbitrary code by providing a crafted macroblock (aka MBlock) number in a video stream in a crafted movie file that triggers heap memory corruption, related to a “missing resync marker range check” and the (1) decoder_iframe, (2) decoder_pframe, and (3) decoder_bframe functions.

CPENameOperatorVersion
xvideq1.1.2
xvideq1.2.0
xvidle1.2.1
xvideq1.1.1
xvideq1.1.3
xvideq1.1.0

Name	Operator	Version
xvid	eq	1.1.2
xvid	eq	1.2.0
xvid	le	1.2.1
xvid	eq	1.1.1
xvid	eq	1.1.3
xvid	eq	1.1.0

References

cvs.xvid.org/cvs/viewvc.cgi/xvidcore/src/decoder.c

cvs.xvid.org/cvs/viewvc.cgi/xvidcore/src/decoder.c?r1=1.80&r2=1.81

secunia.com/advisories/35274

www.securityfocus.com/bid/35156

www.vupen.com/english/advisories/2009/1468

www.xvid.org/News.64.0.html?&cHash=0170b4e439&tx_ttnews[backPid]=64&tx_ttnews[tt_news]=7

www.it-isac.org/postings/cyber/alertdetail.php?id=4634&selyear=2009&menutype=menupublic