105 matches found
MS10-026 Microsoft MPEG Layer-3 Audio Stack Based Overflow
This module exploits a buffer overflow in l3codecx.ax while processing a AVI files with MPEG Layer-3 audio contents. The overflow only allows to overwrite with 0's so the three least significant bytes of EIP saved on stack are overwritten and shellcode is mapped using the .NET DLL memory techniqu...
VLC Media Player '.AVI' File BOF Vulnerability (Windows)
The host is installed with VLC Media Player and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodvlcmediaplayeravibofvulnwin.nasl 8174 2017-12-19 12:23:25Z cfischer $ VLC Media Player '.AVI' File BOF Vulnerability Windows Authors: Madhuri D Copyright: Copyright c...
VLC Media Player '.AVI' File BOF Vulnerability - Linux
VLC Media Player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
VLC Media Player '.AVI' File BOF Vulnerability - Windows
VLC Media Player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
VLC Media Player 0.5.0 to 1.1.10 Multiple Buffer Overflows
The version of VLC media player installed on the remote host is between 0.5.0 and 1.1.10. As such, it is reportedly affected by multiple vulnerabilities: - An integer overflow error exists in the handling of the RealAudio portions of RealMedia files. VideoLAN-SA-1105 - An integer underflow error...
QuickTime < 7.6.9 Multiple Vulnerabilities (Mac OS X)
The version of QuickTime installed on the remote Mac OS X host is older than 7.6.9. Such versions contain several vulnerabilities : - A heap buffer overflow in QuickTime's handling of JP2 images may lead to an application crash or arbitrary code execution. CVE-2010-3787 - Uninitialized memory...
Microsoft Windows MP3 codec buffer overflow
Buffer overflow on AVI files with MP3 audio stream...
Microsoft MPEG Layer-3 Codecs Remote Code Execution Vulnerability (977816)
This host is missing a critical security update according to Microsoft Bulletin MS10-026. OpenVAS Vulnerability Test $Id: secpodms10-026.nasl 5934 2017-04-11 12:28:28Z antu123 $ Microsoft MPEG Layer-3 Codecs Remote Code Execution Vulnerability 977816 Authors: Madhuri D Updated By: Madhuri D on...
PT-2010-2241 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: A remote code execution issue exists in the way Microsoft MPEG Layer-3 codecs handle AVI media files. This could allow remote code execution if a user opens a specially crafte...
Microsoft MPEG Layer-3 Codecs Remote Code Execution Vulnerability (977816)
This host is missing a critical security update according to Microsoft Bulletin MS10-026. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Secunia Research: VMWare VMnc Codec HexTile Encoding Buffer Overflow
====================================================================== Secunia Research 09/04/2009 - VMWare VMnc Codec HexTile Encoding Buffer Overflow - ====================================================================== Table of Contents Affected...
Microsoft Windows Media Player 11 - .AVI File Colorspace Conversion Remote Memory Corruption
Microsoft Windows Media Player 11 - .AVI File Colorspace Conversion Remote Memory Corruption source: https://www.securityfocus.com/bid/38790/info Microsoft Windows Media Player is prone to a remote memory-corruption vulnerability when handling specially crafted AVI files. An attacker can exploit...
Media Player Classic v6.4.9.1 (.avi) Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl Media Player Classic 6.4.9.1 .avi Buffer Overflow Exploit Homepage: http://www.sourceforge.net/projects/guliverkli2/ Exploit Coded by: cr4wl3r cr4wl3r\x40linuxmail\x2Eorg From: Indonesia WARNING - WARNING - WARNING - WARNING Disclaimer: The author...
CVE-2010-0250
CVE-2010-0250 is a DirectShow/Quartz heap overflow vulnerability in Microsoft DirectX where the AVI/QUartz AVI parser misallocates a buffer when processing a crafted AVI file’s length field, enabling remote code execution. Affected components include DirectShow (AVI Filter) and Quartz, with impac...
Microsoft DirectShow Remote Code Execution Vulnerability (977935)
This host is missing a critical security update according to Microsoft Bulletin MS10-013. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
PT-2009-4040 · Microsoft · Windows Server 2003 +6
Name of the Vulnerable Software and Affected Versions: Windows 2000 SP4 Windows XP SP2 Windows XP SP3 Windows Server 2003 SP2 Windows Vista Gold Windows Vista SP1 Windows Vista SP2 Windows Server 2008 Gold Windows Server 2008 SP2 Description: A remote code execution issue exists in the way...
Apple QuickTime AVI Header nBlockAlign Heap Corruption Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of AVI file...
MPlayer buffer overflow
Buffer overflow on AVI files parsing...
CVE-2007-4941
KMPlayer 2.9.3.1210 and earlier allows remote attackers to cause a denial of service CPU consumption via a .avi file with certain large "indx truck size" and nEntriesInuse values...
CVE-2007-4938
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry...