CVE-2012-5359

Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted ASF file...

CVE-2012-5359

CVE-2012-5359 affects FFmpeg’s Libavcodec prior to 0.11. The vulnerability arises in the libavcodec ASF (and QT/WMV) parsing path, where memory corruption can occur, allowing remote code execution. Exploitation requires a user to open a specially crafted ASF file (not automatically via email), wi...

CVE-2012-5359

Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted ASF file...

CVE-2017-16951

Winamp Pro 5.66 Build 3512 allows remote attackers to cause a denial of service via a crafted WAV, WMV, AU, ASF, AIFF, or AIF file...

Code injection

Winamp Pro 5.66 Build 3512 allows remote attackers to cause a denial of service via a crafted WAV, WMV, AU, ASF, AIFF, or AIF file...

CVE-2017-16951

CVE-2017-16951 affects Winamp Pro 5.66 Build 3512. A crafted WAV/WMV/AU/ASF/AIFF/AIF file can cause a denial of service, per multiple sources linked to the CVE. The vulnerability is triggered by processing these media formats, with exploitation details visible in publicly available exploit materi...

Winamp Pro 5.66.Build.3512 - Denial of Service

Winamp Pro 5.66.Build.3512 - Denial of Service ! /usr/bin/perl Exploit Title: Winamp Pro .wav|.wmv|.au|.asf|.aiff|.aif Denial of Service Date: 2017-11-22 Exploit Author: R.Yavari Version: v5.66.Build.3512 Tested on: Windows 10 , Windows 7 other version should be affected CVE-2017-16951...

The vulnerability of the asf_build_simple_index() function in the FFmpeg multimedia library (libavformat/asfdec_f.c) allows a attacker to cause a service failure.

The vulnerability of the asfbuildsimpleindex function in the FFmpeg multimedia library libavformat/asfdecf.c arises from the lack of checking for the end-of-file flag during the processing of ASF files. This leads to repeated execution of the for loop, which is related to the large size of the...

Debian DSA-3996-1 : ffmpeg - security update

Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed Real, MV, RL2, ASF, Apple HLS, Phantom Cine, MXF, NSV, MOV or RTP H.264 files/streams are processed. %NASLMINLEVEL...

[SECURITY] [DSA 3996-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3996-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 10, 2017 https://www.debian.org/security/faq -...

The vulnerability of the asf_read_marker function in the FFmpeg multimedia library allows a attacker to trigger memory consumption and service failure.

The vulnerability of the asfreadmarker function in the FFmpeg multimedia library is related to resource management errors. Exploiting this vulnerability can allow an attacker to induce memory consumption and service failures by using a specially created ASF file. Such files require a high value f...

DEBIAN-CVE-2017-14223

In libavformat/asfdecf.c in FFmpeg 3.3.3, a DoS in asfbuildsimpleindex due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is provided, the for loop would...

CVE-2017-14223

In libavformat/asfdecf.c in FFmpeg 3.3.3, a DoS in asfbuildsimpleindex due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is provided, the for loop would...

ALPINE-CVE-2017-14223

In libavformat/asfdecf.c in FFmpeg 3.3.3, a DoS in asfbuildsimpleindex due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is provided, the for loop would...

Design/Logic Flaw

In libavformat/asfdecf.c in FFmpeg 3.3.3, a DoS in asfbuildsimpleindex due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is provided, the for loop would...

CVE-2017-14223

In libavformat/asfdecf.c in FFmpeg 3.3.3, a DoS in asfbuildsimpleindex due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is provided, the for loop would...

UBUNTU-CVE-2017-14223

In libavformat/asfdecf.c in FFmpeg 3.3.3, a DoS in asfbuildsimpleindex due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is provided, the for loop would...

CVE-2017-14223

In libavformat/asfdecf.c in FFmpeg 3.3.3, a DoS in asfbuildsimpleindex due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is provided, the for loop would...

Denial Of Service (DoS) Via High CPU And Memory Consumption

FFmpeg is vulnerable to denial of service DoS attacks. These attacks are possible because FFmpeg does not check for an EOF End of File in the asfreadmarker function. This leads to high CPU and memory consumption when a malicious ASF file with a large namelen or count field in the header but witho...

DEBIAN-CVE-2017-14057

In FFmpeg 3.3.3, a DoS in asfreadmarker due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted ASF file, which claims a large "namelen" or "count" field in the header but does not contain sufficient backing data, is provided, the loops over the name an...