4 matches found
Design/Logic Flaw
MPlayer, possibly 1.0rc1, allows remote attackers to cause a denial of service SIGSEGV and application crash via 1 a malformed MP3 file, as demonstrated by lol-mplayer.mp3; 2 a malformed Ogg Vorbis file, as demonstrated by lol-mplayer.ogg; 3 a malformed MPEG-1 file, as demonstrated by...
CVE-2007-4938
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry...
CVE-2007-4938
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry...
CVE-2007-4938
MPlayer up to 1.0rc1 (and earlier) is affected by a vulnerability where remote attackers can trigger a denial of service (SIGSEGV and application crash) by supplying malformed multimedia files. The confirmed vectors include malformed MP3, Ogg Vorbis, MPEG-1/2, AVI, FLAC, Ogg Theora, WMV, and AAC ...