CVE-2008-0011

Microsoft DirectX 8.1 through 9.0c, and DirectX on Microsoft XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008, does not properly perform MJPEG error checking, which allows remote attackers to execute arbitrary code via a crafted MJPEG stream in a 1 AVI or 2 ASF file, a...

Microsoft DirectX code execution

MJPEG format AVI and ASF files parsing vulnerability, SAMI files parsing vulnerability...

CVE-2008-1110

Buffer overflow in demuxers/demuxasf.c aka the ASF demuxer in the xineplugdmxasf.so plugin in xine-lib before 1.1.10 allows remote attackers to execute arbitrary code or cause a denial of service crash via a crafted ASF header. NOTE: this issue leads to a crash when an attack uses the CVE-2006-16...

CVE-2008-1110

Buffer overflow in demuxers/demuxasf.c aka the ASF demuxer in the xineplugdmxasf.so plugin in xine-lib before 1.1.10 allows remote attackers to execute arbitrary code or cause a denial of service crash via a crafted ASF header. NOTE: this issue leads to a crash when an attack uses the CVE-2006-16...

Buffer overflow

Buffer overflow in demuxers/demuxasf.c aka the ASF demuxer in the xineplugdmxasf.so plugin in xine-lib before 1.1.10 allows remote attackers to execute arbitrary code or cause a denial of service crash via a crafted ASF header. NOTE: this issue leads to a crash when an attack uses the CVE-2006-16...

CVE-2008-1110

Buffer overflow in demuxers/demuxasf.c aka the ASF demuxer in the xineplugdmxasf.so plugin in xine-lib before 1.1.10 allows remote attackers to execute arbitrary code or cause a denial of service crash via a crafted ASF header. NOTE: this issue leads to a crash when an attack uses the CVE-2006-16...

CVE-2008-1110

The CVE-2008-1110 issue affects the xine-lib ASF demuxer (xineplug_dmx_asf.so) prior to 1.1.10. The ASF header length is not properly checked, causing a buffer overflow in the demuxer that can lead to remote code execution or a denial of service (crash). Remediation: update to xine-lib 1.1.10 or ...

GLSA-200802-12 : xine-lib: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200802-12 xine-lib: User-assisted execution of arbitrary code Damian Frizza and Alfredo Ortega Core Security Technologies discovered a stack-based buffer overflow within the openflacfile function in the file demuxflac.c when parsi...

xine-lib: User-assisted execution of arbitrary code

Background xine-lib is the core library package for the xine media player. Description Damian Frizza and Alfredo Ortega Core Security Technologies discovered a stack-based buffer overflow within the openflacfile function in the file demuxflac.c when parsing tags within a FLAC file CVE-2008-0486. ...

Debian: Security Advisory (DSA-1081-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Media Format ASF Parsing Code Execution (MS07-068; CVE-2007-0064)

The Microsoft Windows Media Format Runtime provides information and tools for applications that use Windows Media content. The core component of Windows Media Format is the Advanced Systems Format ASF. ASF is a file format that stores audio and video information and is specially designed to run...

CVE-2007-0064

Heap-based buffer overflow in Windows Media Format Runtime 7.1, 9, 9.5, 9.5 x64 Edition, 11, and Windows Media Services 9.1 for Microsoft Windows 2000, XP, Server 2003, and Vista allows user-assisted remote attackers to execute arbitrary code via a crafted Advanced Systems Format ASF file...

Microsoft Windows Media code execution

Code execution with ASF files...

Microsoft Windows Media Format Runtime ASF handling buffer overflow

Overview Microsoft Windows Media Format Runtime is vulnerable to a heap-based buffer overflow. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on an vulnerable system. Description Microsoft Windows Media Format Runtime is used by various Windows Media...

MS07-068: Vulnerability in Windows Media File Format Could Allow Remote Code Execution (941569 / 944275)

The remote host is running Windows Media Player/Service. There is a vulnerability in the remote version of this software that could allow an attacker to execute arbitrary code on the remote host. To exploit this flaw, one attacker would need to set up a rogue ASF file and send it to a victim on t...

openSUSE 10 Security Update : libextractor (libextractor-1426)

Fix heap overflow in the asf plugin CVE-2006-2458 176280. Fix heap overflow in the qt plugin CVE-2006-2458 176280. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libextractor-1426. The text...

Security fix for the ALT Linux 7 package apr1 version 1.2.8-alt1.2

June 14, 2007 Aleksey Avdeev 1.2.8-alt1.2 - NMU: + adding apr-1.2.8-asf-aprtableclone.patch: add table copy clone function for apr, for CVE-2007-1862 fix see &LThttp://issues.apache.org/bugzilla/showbug.cgi?id=41551 and &LThttp://issues.apache.org/bugzilla/attachment.cgi?id=20150...

Memory corruption

Telestream Flip4Mac Windows Media Components for Quicktime 2.1.0.33 allows remote attackers to execute arbitrary code via a crafted ASFFilePropertiesObject size field in a WMV file, which triggers memory corruption...

CVE-2007-0466

Telestream Flip4Mac Windows Media Components for Quicktime 2.1.0.33 allows remote attackers to execute arbitrary code via a crafted ASFFilePropertiesObject size field in a WMV file, which triggers memory corruption...

Telestream Flip4Mac format string vulnerabilities

Momory corruption on malformed WMV file ASFFilePropertiesObject size field...