526 matches found
CVE-2006-1502
Multiple integer overflows in MPlayer 1.0pre7try2 allow remote attackers to cause a denial of service and trigger heap-based buffer overflows via 1 a certain ASF file handled by asfheader.c that causes the asfdescrambling function to be passed a negative integer after the conversion from a char t...
CVE-2006-1502
Multiple integer overflows in MPlayer 1.0pre7try2 allow remote attackers to cause a denial of service and trigger heap-based buffer overflows via 1 a certain ASF file handled by asfheader.c that causes the asfdescrambling function to be passed a negative integer after the conversion from a char t...
MPlayer media player integer overflow
Integer overflow on ASF files playing and different multimedia formats...
mplayer -- Multiple integer overflows
Secunia reports: The vulnerabilities are caused due to integer overflow errors in "libmpdemux/asfheader.c" within the handling of an ASF file, and in "libmpdemux/aviheader.c" when parsing the "indx" chunk in an AVI file. This can be exploited to cause heap-based buffer overflows via a malicious A...
Mandrake Linux Security Advisory : mplayer (MDKSA-2006:048)
Multiple integer overflows in 1 the newdemuxpacket function in demuxer.h and 2 the demuxasfreadpacket function in demuxasf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. The updated packages have been patched...
GLSA-200603-03 : MPlayer: Multiple integer overflows
The remote host is affected by the vulnerability described in GLSA-200603-03 MPlayer: Multiple integer overflows MPlayer makes use of the FFmpeg library, which is vulnerable to a heap overflow in the avcodecdefaultgetbuffer function discovered by Simon Kilvington see GLSA 200601-06. Furthermore,...
MPlayer: Multiple integer overflows
Background MPlayer is a media player capable of handling multiple multimedia file formats. Description MPlayer makes use of the FFmpeg library, which is vulnerable to a heap overflow in the avcodecdefaultgetbuffer function discovered by Simon Kilvington see GLSA 200601-06. Furthermore, AFI Securi...
mplayer -- heap overflow in the ASF demuxer
The Mplayer team reports: A potential buffer overflow was found in the ASF demuxer. Arbitrary remote code execution is possible under the user ID running the player when streaming an ASF file from a malicious server or local code execution under the user ID running the player if a malicious ASF...
Integer overflow
Multiple integer overflows in 1 the newdemuxpacket function in demuxer.h and 2 the demuxasfreadpacket function in demuxasf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. NOTE: the provenance of this informati...
CVE-2006-0579
Multiple integer overflows in 1 the newdemuxpacket function in demuxer.h and 2 the demuxasfreadpacket function in demuxasf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. NOTE: the provenance of this informati...
CVE-2006-0579
Multiple integer overflows in 1 the newdemuxpacket function in demuxer.h and 2 the demuxasfreadpacket function in demuxasf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. NOTE: the provenance of this informati...
CVE-2006-0579
CVE-2006-0579 affects MPlayer up to the 1.0pre7ty2 line, due to two integer/heap overflows in ASF demuxing code: new_demux_packet in libmpdemux/demuxer.h and demux_asf_read_packet in libmpdemux/demux_asf.c. The flaws enable remote attackers to execute arbitrary code by feeding a crafted ASF file ...
CVE-2006-0579
Multiple integer overflows in 1 the newdemuxpacket function in demuxer.h and 2 the demuxasfreadpacket function in demuxasf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. NOTE: the provenance of this informati...
CVE-2006-0579
Multiple integer overflows in 1 the newdemuxpacket function in demuxer.h and 2 the demuxasfreadpacket function in demuxasf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. NOTE: the provenance of this informati...
[SA18718] MPlayer ASF File Parsing Integer Overflow Vulnerabilities
TITLE: MPlayer ASF File Parsing Integer Overflow Vulnerabilities SECUNIA ADVISORY ID: SA18718 VERIFY ADVISORY: http://secunia.com/advisories/18718/ CRITICAL: Moderately critical IMPACT: DoS, System access WHERE: From remote SOFTWARE: MPlayer 1.x http://secunia.com/product/2255/ DESCRIPTION: AFI...
CVE-2004-1285
Buffer overflow in the getheader function in asfmmststreaming.c for MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a crafted ASF video stream...
DEBIAN-CVE-2004-1310
Stack-based buffer overflow in the asfmmststreaming.c functionality for MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a large MMST stream packet...
CVE-2004-1285
Buffer overflow in the getheader function in asfmmststreaming.c for MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a crafted ASF video stream...
CVE-2004-1285
CVE-2004-1285 affects MPlayer 1.0pre5; a buffer overflow in the get_header function in asf_mmst_streaming.c can allow remote attackers to execute arbitrary code via a crafted ASF video stream. Descriptions from NVD/SUSE confirm the vulnerability; exploitation status and specific patches are not d...
SUSE-SA:2004:032: apache2
The remote host is missing the patch for the advisory SUSE-SA:2004:032 apache2. The Apache daemon is running on most of the web-servers used in the Internet today. The Red Hat ASF Security-Team and the Swedish IT Incident Center within the National Post and Telecom Agency SITIC have found a bug i...