41 matches found
EUVD-2014-9143
Malware in sbrugna...
EUVD-2017-5573
Malware in sbrugna...
cine-feuilles.ch Cross Site Scripting vulnerability OBB-3934556
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
cine-recherche.com.prostats.org Cross Site Scripting vulnerability OBB-3774413
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
SUSE CVE-2016-2328
libswscale/swscaleunscaled.c in FFmpeg before 2.8.6 does not validate certain height values, which allows remote attackers to cause a denial of service out-of-bounds array read access or possibly have unspecified other impact via a crafted .cine file, related to the bayertorgb24wrapper and...
SUSE CVE-2017-14059
In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...
The vulnerability of the DPX module in the software framework for creating 3D computer graphics in Blender arises from integer overflow. This allows an attacker to execute arbitrary code.
The vulnerability of the DPX module in Blender’s 3D computer graphics software is caused by a numerical overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created CIN file...
cine-news.net XSS vulnerability
Open Bug Bounty ID: OBB-655805 Description| Value ---|--- Affected Website:| cine-news.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
cine-max.sk XSS vulnerability
Open Bug Bounty ID: OBB-607241 Description| Value ---|--- Affected Website:| cine-max.sk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Debian DSA-3996-1 : ffmpeg - security update
Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed Real, MV, RL2, ASF, Apple HLS, Phantom Cine, MXF, NSV, MOV or RTP H.264 files/streams are processed. %NASLMINLEVEL...
[SECURITY] [DSA 3996-1] ffmpeg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3996-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 10, 2017 https://www.debian.org/security/faq -...
The vulnerability of the cine_read_header function in the FFmpeg multimedia library allows a attacker to trigger memory consumption and service failure.
The vulnerability of the cinereadheader function in the FFmpeg multimedia library is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to induce memory consumption and service failures by using a specially created CINE file. This file requires a larg...
Denial Of Service (DoS) Via High CPU And Memory Consumption
FFmpeg is vulnerable to denial of service DoS attacks. These attacks are possible because FFmpeg does not check for an EOF End of File inside the loop in the cinereadheader function. This leads to high CPU and memory consumption when a malicious CINE file with a large duration field in the header...
Ffmpeg 'cine_read_header()' function denial of service vulnerability
Fmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'cinereadheader' function in FFmpeg version 3.3.3, which stems from the program's failure to adequately validate the EOF, and can be exploited to cause...
Design/Logic Flaw
In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...
UBUNTU-CVE-2017-14059
In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...
DEBIAN-CVE-2017-14059
In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...
CVE-2017-14059
In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...
ALPINE-CVE-2017-14059
In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...
CVE-2017-14059
In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...