Cisco Meeting Server Denial of Service Vulnerability (CNVD-2017-34912)

Cisco Meeting Server formerly known as Acano Conferencing Server, CMS is the United States Cisco Cisco company's set of audio and video conferencing server software. A denial of service vulnerability exists in the H.26 decoder function in Cisco Meeting Server. A remote attacker can exploit this...

CVE-2017-12311

A vulnerability in the H.264 decoder function of Cisco Meeting Server could allow an unauthenticated, remote attacker to cause a Cisco Meeting Server media process to restart unexpectedly when it receives an illegal H.264 frame. The vulnerability is triggered by an H.264 frame that has an invalid...

Android Media framework mpeg2 decoder remote code execution vulnerability (CNVD-2017-23433)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA.Media framework mpeg2 decoder is one of the mpeg2 decoders for multimedia development. A remote code execution vulnerability exists in Media framework mpeg2 decoder in Android. A...

Android Media framework h264 decoder denial of service vulnerability

Android is a set of Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA for short. media framework h264 decoder is one of the h264 decoder for multimedia development. A denial of service vulnerability exists in Media framework h264 decoder in...

CVE-2017-0745

A remote code execution vulnerability in the Android media framework avc decoder. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37079296...

flash-plugin: multiple code execution issues fixed in APSB17-04

Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability in the h264 decoder routine. Successful exploitation could lead to arbitrary code execution...

Android Qualcomm component lifting vulnerability (CNVD-2016-04857)

Android on Nexus 5 and 7 is an open source Linux-based operating system for the Nexus 5 and 7 smartphones developed by Google and the Open Handset Alliance OHA in the U.S. Qualcomm is one of the U.S.-based companies used in the Qualcomm devices. Qualcomm is a Qualcomm device-specific component us...

CVE-2016-3746

Use-after-free vulnerability in the mm-video-v4l2 vdec component in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem...

CVE-2016-2479

The mm-video-v4l2 vdec component in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 mishandles a buffer count, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSyste...

Google Chrome vpxdecoder Denial of Service Vulnerability

Google Chrome is a web browsing tool developed by Google. A security vulnerability exists in the 'VpxVideoDecoder::VpxDecode' function in the media/filters/vpxvideodecoder.cc file in the vpxdecoder implementation in versions of Google Chrome prior to 41.0.2272.76. ' function in the...

UBUNTU-CVE-2014-3157

Heap-based buffer overflow in the FFmpegVideoDecoder::GetVideoBuffer function in media/filters/ffmpegvideodecoder.cc in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging VideoFrame data structures that a...

ffdshow URL link buffer overflow

Added: 03/25/2009 CVE: CVE-2008-5381 BID: 32438 OSVDB: 50064 Background ffdshow tryouts also known just as ffdshow is an audio and video decoder for Windows. Problem A buffer overflow vulnerability allows command execution when a user opens a media stream with a long, specially crafted URL link...

DEBIAN-CVE-2007-1246

The DMOVideoDecoderOpen function in loader/dmo/DMOVideoDecoder.c in MPlayer 1.0rc1 and earlier, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote attackers to cause a buffer overflow and possibly execute arbitrary code, a different vulnerabilit...