14 matches found
FFmpeg libavcodec "vmd decode()"堆缓冲区溢出漏洞
BUGTRAQ ID: 50880 CVE ID: CVE-2010-3429 FFmpeg是一个免费的可以执行音讯和视讯多种格式的录影、转档、串流功能的软件。 FFmpeg在“vmd decode”的实现上存在堆缓冲区溢出漏洞,攻击者可利用此漏洞执行任意代码,造成拒绝服务。 FFmpeg FFmpeg 0.8.7 FFmpeg FFmpeg 0.8.6 FFmpeg FFmpeg 0.8.6 FFmpeg FFmpeg 0.8.5 FFmpeg FFmpeg 0.8.5 FFmpeg FFmpeg 0.8.4 FFmpeg FFmpeg 0.8.3 FFmpeg FFmpeg 0.8....
Security fix for the ALT Linux 5 package ffmpeg version 1:0.6-alt4.M50P.1
July 25, 2011 Gleb Fotengauer-Malinovskiy 1:0.6-alt4.M50P.1 - Backport to p5 branch fixes CVE-2010-3429...
Mandriva Update for mplayer MDVSA-2011:089 (mplayer)
Check for the Version of mplayer OpenVAS Vulnerability Test Mandriva Update for mplayer MDVSA-2011:089 mplayer Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Mandriva Update for mplayer MDVSA-2011:088 (mplayer)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Mandriva Update for ffmpeg MDVSA-2011:061 (ffmpeg)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
[USN-1104-1] FFmpeg vulnerabilities
=========================================================== Ubuntu Security Notice USN-1104-1 April 04, 2011 ffmpeg vulnerabilities CVE-2010-3429, CVE-2010-3908, CVE-2010-4704, CVE-2011-0480, CVE-2011-0722, CVE-2011-0723 =========================================================== A security issue...
Ubuntu 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : ffmpeg vulnerabilities (USN-1104-1)
Cesar Bernardini and Felipe Andres Manzano discovered that FFmpeg incorrectly handled certain malformed flic files. If a user were tricked into opening a crafted flic file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of...
[SECURITY] [DSA 2165-1] ffmpeg-debian security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2165-1 [email protected] http://www.debian.org/security/ Luciano Bello February 16, 2011 http://www.debian.org/security/faq -...
Free CD to MP3 Converter 3.1 - Local Buffer Overflow (SEH)
Exploit Title: Free CD to MP3 Converter 3.1 Buffer Overflow Exploit SEH Date: 10/18/10 Credit/Bug found by: C4SS!0 G0M3S Software Link: http://www.eusing.com/Download/cdtomp3freeware.exe Version: 3.1 Tested on: Windows XP SP3 EN VMWARE FUSION - Version 3.1.1 CVE: N/A ! /usr/bin/env ruby filename ...
CVE-2010-3429
flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."...
CVE-2010-3429
flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."...
CVE-2010-3429
CVE-2010-3429 affects FFmpeg’s libavcodec (0.6 and earlier) used by MPlayer and other apps. The flaw resides in flic file processing, enabling remote code execution via a crafted flic, related to an arbitrary offset dereference. Public advisories (GLSA 2013-10-12/13 and related OpenVAS entries) g...
CVE-2010-3429
flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."...
CVE-2010-3429
flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."...