Lucene search

K

PRIOn knowledge basePRION:CVE-2011-3362

HistoryOct 02, 2011 - 8:55 p.m.

Integer overflow

2011-10-0220:55:00

PRIOn knowledge base

www.prio-n.com

4

8.1 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.015 Low

EPSS

Percentile

87.1%

Integer signedness error in the decode_residual_block function in cavsdec.c in libavcodec in FFmpeg before 0.7.3 and 0.8.x before 0.8.2, and libav through 0.7.1, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Chinese AVS video (aka CAVS) file.

CPENameOperatorVersion
ffmpegeq0.7.1
ffmpegeq0.4.5
ffmpegeq0.3.2
ffmpegeq0.4.7
ffmpegeq0.6.1
ffmpegeq0.3.3
ffmpegeq0.3
ffmpegeq0.4.2
ffmpegle0.7.2
ffmpegeq0.5

Rows per page:

1-10 of 491

References

git.videolan.org/?p=ffmpeg.git;a=commit;h=91d5da9321c52e8197fb14046ebb335f3e6ff4a0

git.videolan.org/?p=ffmpeg.git;a=commit;h=c5cbda50793e311aa73489d12184ffd6761c9fbf

secunia.com/advisories/45532

www.ffmpeg.org/releases/ffmpeg-0.7.5.changelog

www.ffmpeg.org/releases/ffmpeg-0.8.4.changelog

www.ocert.org/advisories/ocert-2011-002.html

www.openwall.com/lists/oss-security/2011/09/13/4

www.openwall.com/lists/oss-security/2011/09/14/8

8.1 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.015 Low

EPSS

Percentile

87.1%

Related for PRION:CVE-2011-3362

securityvulns2 cvelist3 cve3 debiancve3 nvd3 ubuntucve3 prion2 openvas11 ubuntu2 nessus6 debian1 osv1 gentoo1