CVE-2008-5072

vsfilter.dll in K-Lite Mega Codec Pack 3.5.7.0 allows remote attackers to cause a denial of service application crash via a malformed FLV file...

CVE-2008-5072

CVE-2008-5072 affects the K-Lite Mega Codec Pack (vsfilter.dll, 3.5.7.0). A malformed FLV file can cause the host application to crash, yielding a Denial of Service. Documents consistently describe a DoS impact via crafted input to vsfilter.dll; no verified exploit details or mitigations are prov...

Vulnerabilities in DirectX Could Allow Remote Code Execution (951698)

This host has DirectX installed, which is prone to remote code execution vulnerabilities. OpenVAS Vulnerability Test $Id: gbms08-033.nasl 5863 2017-04-05 07:38:11Z antu123 $ Vulnerabilities in DirectX Could Allow Remote Code Execution 951698 Authors: Veerendra GG Updated by Madhuri D on 2010-12-0...

K-Lite Mega Codec Pack 'vsfilter.dll'拒绝服务漏洞

BUGTRAQ ID: 31400 CNCAN ID：CNCAN-2008092605 K-Lite Mega Codec Pack是一款影音格式的解码器。 K-Lite Mega Codec Pack 'vsfilter.dll'库处理媒体文件存在问题，远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 构建恶意的flv文件，诱使用户访问可触发。 K-Lite Mega Codec Pack 3.5.7.0 目前没有解决方案提供： http://www.codecguide.com/downloadmega.htm 可参考如下测试程序：...

Apple QuickTime Multiple Arbitrary Code Execution Vulnerabilities - Windows

Apple QuickTime is prone to multiple arbitrary code execution vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

K-Lite Mega Codec Pack 3.5.7.0 Local Windows Explorer DoS PoC

No description provided by source. K-Lite Mega Codec Pack based Local Windows Explorer DOS PoC. Version:3.5.7.0 "vsfilter.dll"Version 1.0.1.4 that comes bundled with the above Codec Pack crashes when we try to use,select or even highlight the attached "Test7.flv" file in Windows Explorer,causing...

K-Lite Mega Codec Pack 3.5.7.0 - Local Windows Explorer Denial of Service (PoC)

K-Lite Mega Codec Pack 3.5.7.0 - Local Windows Explorer Denial of Service PoC K-Lite Mega Codec Pack based Local Windows Explorer DOS PoC. Version:3.5.7.0 "vsfilter.dll"Version 1.0.1.4 that comes bundled with the above Codec Pack crashes when we try to use,select or even highlight the attached...

K-Lite Mega Codec Pack 3.5.7.0 Local Windows Explorer DoS PoC

Exploit for unknown platform in category dos / poc ============================================================= K-Lite Mega Codec Pack 3.5.7.0 Local Windows Explorer DoS PoC ============================================================= K-Lite Mega Codec Pack based Local Windows Explorer DOS PoC...

K-Lite Mega Codec Pack 3.5.7.0 - Local Windows Explorer Denial of Service (PoC)

K-Lite Mega Codec Pack based Local Windows Explorer DOS PoC. Version:3.5.7.0 "vsfilter.dll"Version 1.0.1.4 that comes bundled with the above Codec Pack crashes when we try to use,select or even highlight the attached "Test7.flv" file in Windows Explorer,causing Explorer to Crash. Greetz fly out t...

Critical Vulnerability in Apple Quicktime’s Indeo Codec

http://www.ngssoftware.com/advisories/critical-vulnerability-in-apple-quicktimes-indeo-codec/ Paul Byrne of NGSSoftware has discovered a critical vulnerability in Apple Quicktime's implementation of the Indeo Codec CVE-ID: CVE-2008-3615 which may allow an attacker to execute arbitrary code on a...

ZDI-08-057: Apple QuickTime IV32 Codec Parsing Stack Overflow Vulnerability

ZDI-08-057: Apple QuickTime IV32 Codec Parsing Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-057 September 9, 2008 -- CVE ID: CVE-2008-3635 -- Affected Vendors: Apple -- Affected Products: Apple Quicktime -- Vulnerability Details: This vulnerability allows...

CVE-2008-3615

ir5032.qtx in an unspecified third-party Indeo v5 codec for QuickTime, when used with Apple QuickTime before 7.5.5 on Windows, accesses uninitialized memory, which allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file...

Code injection

ir5032.qtx in an unspecified third-party Indeo v5 codec for QuickTime, when used with Apple QuickTime before 7.5.5 on Windows, accesses uninitialized memory, which allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file...

CVE-2008-3635

Stack-based buffer overflow in QuickTimeInternetExtras.qtx in an unspecified third-party Indeo v3.2 aka IV32 codec for QuickTime, when used with Apple QuickTime before 7.5.5 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted...

CVE-2008-3615

CVE-2008-3615 affects Apple QuickTime on Windows due to an uninitialized memory access in the third‑party Indeo v5 codec (ir50_32.qtx). A crafted movie file can trigger remote code execution or cause a denial of service (crash). The issue is mitigated by updating to QuickTime 7.5.5 or later (as r...

CVE-2008-3635

Apple QuickTime CVE-2008-3635 is a stack-based buffer overflow in QuickTimeInternetExtras.qtx when parsing Indeo v3.2 (IV32) in QuickTime on Windows prior to 7.5.5. The flaw arises from missing bounds checking in the IV32 codec parsing, allowing remote code execution or a crash via a crafted movi...

Apple QuickTime IV32 Codec Parsing Stack Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of QuickTim...

Update Protection against Microsoft MJPEG Decoder Vulnerability (MS08-033)

A remote code execution vulnerability has been reported in the way that the Windows MJPEG Codec handles MJPEG streams in media files. MJPEG is a media file that contains a number of JPEG images that have been connected together to create a video stream. A remote attacker may exploit this...

Microsoft DirectX SAMI文件及MJPEG视频流解析栈溢出漏洞（MS08-032）

BUGTRAQ ID: 29581,29578 CVECAN ID: CVE-2008-0011,CVE-2008-1444 Microsoft DirectX是Windows操作系统中的一项功能，流媒体在玩游戏或观看视频时通过这个功能支持图形和声音。 DirectX在解析SAMI文件中的Class Name变量属性参数时存在栈溢出漏洞，Windows MJPEG Codec在解析ASF或AVI媒体文件中内嵌的MJPEG音频流时存在另一个栈溢出漏洞。如果用户受骗打开或预览了恶意的媒体文件的话，就可以触发这些溢出，导致执行任意指令。 Microsoft DirectX 9.0...

Apple QuickTime Player 7.5修复多个安全漏洞

BUGTRAQ ID: 29619 CVECAN ID: CVE-2008-1581,CVE-2008-1582,CVE-2008-1583,CVE-2008-1584,CVE-2008-1585 Apple QuickTime是一款非常流行的多媒体播放器。 QuickTime的7.5之前版本存在多个安全漏洞，允许用户通过畸形的媒体文件获得敏感信息或完全入侵用户系统。 CVE-2008-1581 QuickTime在处理PICT图形中的PixData结构时存在堆溢出漏洞，如果用户受骗打开了恶意的PICT图形的话就会导致播放器终止或执行任意指令。 CVE-2008-1582...