526 matches found
Denial Of Service (DoS) Via High CPU And Memory Consumption
FFmpeg is vulnerable to denial of service DoS attacks. These attacks are possible because FFmpeg does not check for an EOF End of File in the asfreadmarker function. This leads to high CPU and memory consumption when a malicious ASF file with a large namelen or count field in the header but witho...
CVE-2017-14057
In FFmpeg 3.3.3, a DoS in asfreadmarker due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted ASF file, which claims a large "namelen" or "count" field in the header but does not contain sufficient backing data, is provided, the loops over the name an...
Design/Logic Flaw
In FFmpeg 3.3.3, a DoS in asfreadmarker due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted ASF file, which claims a large "namelen" or "count" field in the header but does not contain sufficient backing data, is provided, the loops over the name an...
UBUNTU-CVE-2017-14057
In FFmpeg 3.3.3, a DoS in asfreadmarker due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted ASF file, which claims a large "namelen" or "count" field in the header but does not contain sufficient backing data, is provided, the loops over the name an...
DEBIAN-CVE-2017-14057
In FFmpeg 3.3.3, a DoS in asfreadmarker due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted ASF file, which claims a large "namelen" or "count" field in the header but does not contain sufficient backing data, is provided, the loops over the name an...
CVE-2017-14057
In FFmpeg 3.3.3, a DoS in asfreadmarker due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted ASF file, which claims a large "namelen" or "count" field in the header but does not contain sufficient backing data, is provided, the loops over the name an...
CVE-2017-14057
In FFmpeg 3.3.3, a DoS in asfreadmarker due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted ASF file, which claims a large "namelen" or "count" field in the header but does not contain sufficient backing data, is provided, the loops over the name an...
CVE-2017-14057
In FFmpeg 3.3.3, a DoS in asfreadmarker due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted ASF file, which claims a large "namelen" or "count" field in the header but does not contain sufficient backing data, is provided, the loops over the name an...
Easy WMVASFASX to DVD Burner 2.3.11 - Local Buffer Overflow (SEH)
Easy WMVASFASX to DVD Burner 2.3.11 - Local Buffer Overflow SEH !/usr/bin/python ======================================================================================================================== Exploit Author: Touhid M.Shaikh Exploit Title: Easy WMV/ASF/ASX to DVD Burner 2.3.11 - 'Enter...
Easy WMV/ASF/ASX To DVD Burner 2.3.11 Buffer Overflow
!/usr/bin/python ======================================================================================================================== Exploit Author: Touhid M.Shaikh Exploit Title: Easy WMV/ASF/ASX to DVD Burner 2.3.11 - 'Enter User Name' Field Buffer Overflow SEH Date: 28-08-2017 Website:...
Easy WMV /ASF / ASX to DVD Burner 2.3.11 - Buffer Overflow (SEH) Exploit
Exploit for windows platform in category local exploits !/usr/bin/python ======================================================================================================================== Exploit Author: Touhid M.Shaikh Exploit Title: Easy WMV/ASF/ASX to DVD Burner 2.3.11 - 'Enter User Name...
Easy WMV/ASF/ASX to DVD Burner 2.3.11 - Local Buffer Overflow (SEH)
!/usr/bin/python ======================================================================================================================== Exploit Author: Touhid M.Shaikh Exploit Title: Easy WMV/ASF/ASX to DVD Burner 2.3.11 - 'Enter User Name' Field Buffer Overflow SEH Date: 28-08-2017 Website:...
MP3 WAV to CD Burner 1.4.24 - Buffer Overflow (SEH) Exploit
Exploit for windows platform in category local exploits !/usr/bin/python Exploit Title: MP3 WAV to CD Burner 1.4.24 - 'Enter User Name' Field Buffer Overflow SEH Date: 24-08-2017 Exploit Author: Anurag Srivastava Website: www.pyramidcyber.com Vulnerable Software: MP3 WAV to CD Burner Vendor...
Easy MOV Converter 1.4.24 - Local Buffer Overflow (SEH)
Easy MOV Converter 1.4.24 - Local Buffer Overflow SEH !/usr/bin/python Exploit Title : Easy MOV Converter - 'Enter User Name' Field SEH Overwrite POC Date : 12/03/2017 Exploit Author : Muhann4d Vendor Homepage : http://www.divxtodvd.net/ Software Link : http://www.divxtodvd.net/easymovconverter.e...
GStreamer gst_asf_demux_process_ext_content_desc function denial of service vulnerability
GStreamer is an open source multimedia framework. A denial of service vulnerability exists in the GStreamer gstasfdemuxprocessextcontentdesc function, which could cause a denial of service by a remote attacker...
GStreamer gst_asf_demux_process_ext_stream_props function denial of service vulnerability
GStreamer is an open source multimedia framework. GStreamer has a security vulnerability in the gst-plugins-ugly/gst/asfdemux/gstasfdemux.c/gstasfdemuxprocessextstreamprops function, which causes a denial of service for remote attackers...
ALPINE-CVE-2017-5846
The gstasfdemuxprocessextstreamprops function in gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer before 1.10.3 allows remote attackers to cause a denial of service invalid memory read and crash via vectors related to the number of languages in a video file...
CVE-2017-5844
The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service floating point exception and crash via a crafted ASF file...
ALPINE-CVE-2017-5847
The gstasfdemuxprocessextcontentdesc function in gst/asfdemux/gstasfdemux.c in gst-plugins-ugly in GStreamer allows remote attackers to cause a denial of service out-of-bounds heap read via vectors involving extended content descriptors...
CVE-2017-5844
The gstriffcreateaudiocaps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in GStreamer before 1.10.3 allows remote attackers to cause a denial of service floating point exception and crash via a crafted ASF file...