CVE-2008-3827

Multiple integer underflows in the Real demuxer demuxreal.c in MPlayer 1.0rc2 and earlier allow remote attackers to cause a denial of service process termination and possibly execute arbitrary code via a crafted video file that causes the streamread function to read or write arbitrary memory...

CVE-2008-3827

Multiple integer underflows in the Real demuxer demuxreal.c in MPlayer 1.0rc2 and earlier allow remote attackers to cause a denial of service process termination and possibly execute arbitrary code via a crafted video file that causes the streamread function to read or write arbitrary memory...

DEBIAN-CVE-2008-4201

Heap-based buffer overflow in the decodeMP4file function frontend/main.c in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted MPEG-4 MP4 file...

xine-lib: User-assisted execution of arbitrary code

Background xine-lib is the core library package for the xine media player, and other players such as Amarok, Codeine/Dragon Player and Kaffeine. Description Multiple vulnerabilities have been discovered in xine-lib: Alin Rad Pop of Secunia reported an array indexing vulnerability in the...

DivX Player 6.6.0 SRT File SEH Buffer Overflow Exploit

Exploit for unknown platform in category local exploits ====================================================== DivX Player 6.6.0 SRT File SEH Buffer Overflow Exploit ====================================================== !/usr/bin/python DivX 6.6 SRT SEH overwrite PoC Tested on XP SP2 Coded by Ma...

divx66.py.txt

!/usr/bin/python DivX 6.6 SRT SEH overwrite PoC Tested on XP SP2 Coded by Mati Aharoni, aka muts and Chris Hadnagy, aka loganWHD muts..at..offensive-security...dot..com chris..at..offensive-security...dot..com http://www.offensive-security.com/0day/divx66.py.txt Notes: Unicode buffer - real pita...

GLSA-200803-08 : Win32 binary codecs: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200803-08 Win32 binary codecs: Multiple vulnerabilities Multiple buffer overflow, heap overflow, and integer overflow vulnerabilities were discovered in the Quicktime plugin when processing MOV, FLC, SGI, H.264 and FPX files. Impa...

Memory corruption

Unspecified vulnerability in Apple QuickTime before 7.4 allows remote attackers to cause a denial of service application termination and execute arbitrary code via a crafted Sorenson 3 video file, which triggers memory corruption...

CVE-2008-0031

Unspecified vulnerability in Apple QuickTime before 7.4 allows remote attackers to cause a denial of service application termination and execute arbitrary code via a crafted Sorenson 3 video file, which triggers memory corruption...

GLSA-200708-02 : Xvid: Array indexing vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200708-02 Xvid: Array indexing vulnerabilities Trixter Jack discovered an array indexing error in the getintrablock function in the file src/bitstream/mbcoding.c. The getinterblockh263 and getinterblockmpeg functions in the same...

Flash Player/Plugin Video file parsing Remote Code Execution POC

No description provided by source. Author:yunshu http://www.ph4nt0m.org poc: http://www.milw0rm.com/sploits/07162007-flashflv9.0.45.0exp.zip sebug.net...

Flash Player/Plugin Video file parsing Remote Code Execution POC

Exploit for unknown platform in category remote exploits ================================================================ Flash Player/Plugin Video file parsing Remote Code Execution POC ================================================================ poc: http://www.inj3ct0r.com/sploits/8982.zip...

GLSA-200705-21 : MPlayer: Two buffer overflows

The remote host is affected by the vulnerability described in GLSA-200705-21 MPlayer: Two buffer overflows A buffer overflow has been reported in the DMOVideoDecoderOpen function in file loader/dmo/DMOVideoDecoder.c. Another buffer overflow has been reported in the DSVideoDecoderOpen function in...

MPlayer: Two buffer overflows

Background MPlayer is a media player incuding support for a wide range of audio and video formats. Description A buffer overflow has been reported in the DMOVideoDecoderOpen function in file loader/dmo/DMOVideoDecoder.c. Another buffer overflow has been reported in the DSVideoDecoderOpen function...

Integer overflow

Integer overflow in Apple QuickTime before 7.1.5, when installed on Windows operating systems, allows remote user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 3GP video file...

CVE-2007-0711

Integer overflow in Apple QuickTime before 7.1.5, when installed on Windows operating systems, allows remote user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 3GP video file...

[Full-disclosure] MPlayer DMO buffer overflow

There's an exploitable buffer overflow in the current version of MPlayer v1.0rc1 which can be exploited with a maliciously crafted video file. It's hidden in the function DMOVideoDecoder in the file loader/dmo/DMOVideoDecoder.c. The variable format-biSize gets its value directly from the video...

mplayer -- DMO File Parsing Buffer Overflow Vulnerability

"Moritz Jodeit reports: There's an exploitable buffer overflow in the current version of MPlayer v1.0rc1 which can be exploited with a maliciously crafted video file. It is hidden in the DMOVideoDecoder function of loader/dmo/DMOVideoDecoder.c' file...

Mandrake Linux Security Advisory : mplayer (MDKSA-2005:158)

Buffer overflow in adpcm.c in MPlayer 1.0pre7 and earlier allows remote attackers to execute arbitrary code via a video file with an audio header containing a large value in a strf chunk. The updated packages have been patched to correct this problem. %NASLMINLEVEL 70300 C Tenable Network Securit...

CVE-2005-2718

Buffer overflow in adpcm.c in MPlayer 1.0pre7 and earlier allows remote attackers to execute arbitrary code via crafted PCM audio data, as demonstrated using a video file with an audio header containing a large value in a stream format strf chunk...