20 matches found
EUVD-2015-0810
Malware in sbrugna...
CVE-2019-9347
In the m4vh263 codec, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-109891727...
SUSE CVE-2015-0797
GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service buffer over-read and application crash or possibly execute arbitrary code via crafted H.264 video data in an m4v...
SUSE CVE-2016-8675
The getvlc2 function in getbits.h in Libav before 11.9 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted mp3 file, possibly related to startcode sequences during m4v detection...
CVE-2019-9347
In the m4vh263 codec, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-109891727...
Denial Of Service (DoS)
Mozilla Firefox is vulnerable to denial of service. The application does not properly process malformed web content, which would allow a remote attacker to crash a user's application via malicious H.264 video data in an m4v file...
CVE-2016-8675
The getvlc2 function in getbits.h in Libav before 11.9 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted mp3 file, possibly related to startcode sequences during m4v detection...
CVE-2016-8675
The getvlc2 function in getbits.h in Libav before 11.9 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted mp3 file, possibly related to startcode sequences during m4v detection...
UBUNTU-CVE-2016-8675
The getvlc2 function in getbits.h in Libav before 11.9 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted mp3 file, possibly related to startcode sequences during m4v detection...
CVE-2016-8675
CVE-2016-8675 affects Libav: the get_vlc2 function in get_bits.h is vulnerable in Libav versions before 11.9, allowing remote attackers to cause a denial of service via a crafted MP3 file, possibly related to startcode sequences during m4v detection. The issue is documented across multiple source...
UBUNTU-CVE-2015-0797
GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service buffer over-read and application crash or possibly execute arbitrary code via crafted H.264 video data in an m4v...
CVE-2015-0797
GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service buffer over-read and application crash or possibly execute arbitrary code via crafted H.264 video data in an m4v...
CVE-2015-0797
GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service buffer over-read and application crash or possibly execute arbitrary code via crafted H.264 video data in an m4v...
Design/Logic Flaw
GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service buffer over-read and application crash or possibly execute arbitrary code via crafted H.264 video data in an m4v...
CVE-2015-0797
CVE-2015-0797 affects GStreamer up to 1.4.4 (GStreamer 1.4.x) when used by Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux. The flaw is a buffer over-read in H.264 video data processing in the GStreamer pipeline (m4v files) that can cause a denial o...
PT-2015-4882 · Mozilla +4 · Firefox +6
Name of the Vulnerable Software and Affected Versions: GStreamer versions prior to 1.4.5 Mozilla Firefox versions prior to 38.0 Firefox ESR 31.x versions prior to 31.7 Thunderbird versions prior to 31.7 Description: The issue allows remote attackers to cause a denial of service buffer over-read a...
Integer overflow
Integer overflow in the FlipFileTypeAtomBtoN function in Apple Quicktime 7.1.5, and other versions before 7.2, allows remote attackers to execute arbitrary code via a crafted M4V MP4 file...
CVE-2007-2296
Integer overflow in the FlipFileTypeAtomBtoN function in Apple Quicktime 7.1.5, and other versions before 7.2, allows remote attackers to execute arbitrary code via a crafted M4V MP4 file...
CVE-2007-2296
CVE-2007-2296: Apple QuickTime contains an integer overflow in the FlipFileTypeAtom_BtoN function used when parsing M4V/MP4 files, allowing remote code execution. Affected: QuickTime 7.1.5 and earlier; prior reports indicate impact for versions before 7.2. The connected documents confirm the root...
CVE-2006-1463
Apple QuickTime before 7.1 is affected by a heap-based buffer overflow in the H.264 (M4V) parsing path. The vulnerability arises from a memory copy loop that trusts a user-supplied size value, enabling remote code execution when a malformed video file is opened or embedded. The issue is documente...