38 matches found
CVE-2025-60485
GPAC MP4Box contains a segmentation fault in the gf_isom_apple_set_tag_ex function (/isomedia/isom_write.c) that can crash the process when parsing a crafted MP4 file, affecting versions before 26.02.0. The issue is a DoS vulnerability caused by a fault in tag handling. The available references c...
EUVD-2010-0094
Malware in sbrugna...
EUVD-2008-3621
Malware in sbrugna...
EUVD-2008-1026
Malware in sbrugna...
CVE-2009-0894
Heap-based buffer overflow in the decodercreate function in the initialization functionality in xvidcore/src/decoder.c in Xvid before 1.2.2, as used by Windows Media Player and other applications, allows remote attackers to execute arbitrary code via vectors involving the DirectShow aka DShow...
CVE-2019-8585
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. Processing a maliciously crafted movie file may lead to arbitrary code execution...
Debian DSA-3899-1 : vlc - security update
Several vulnerabilities have been found in VLC, the VideoLAN project's media player. Processing malformed subtitles or movie files could lead to denial of service and potentially the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
USN-3135-2: GStreamer Good Plugins vulnerability
USN-3135-1 fixed a vulnerability in GStreamer Good Plugins. The original security fix was incomplete. This update fixes the problem. Original advisory details: Chris Evans discovered that GStreamer Good Plugins did not correctly handle malformed FLC movie files. If a user were tricked into openin...
USN-3135-1 gst-plugins-good0.10, gst-plugins-good1.0 vulnerability
Chris Evans discovered that GStreamer Good Plugins did not correctly handle malformed FLC movie files. If a user were tricked into opening a crafted FLC movie file with a GStreamer application, an attacker could cause a denial of service via application crash, or execute arbitrary code with the...
FFmpeg 'asf_write_packet' function integer overflow vulnerability
FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. An integer overflow vulnerability in the 'asfwritepacket' function in the libavformat/asfenc.c file of FFmpeg allows remote attackers to build special .mov files to crash the application...
Apple iOS CoreMedia Playback Memory Corruption Vulnerability
Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A memory corruption vulnerability exists in Apple iOS CoreMedia Playback, which allows remote attackers to exploit the vulnerability to construct special movie files that can be tricked into parsing by th...
Apple QuickTime Memory Corruption Vulnerability (CNVD-2015-04261)
Apple QuickTime is a popular multimedia player. A vulnerability in Apple QuickTime's handling of special movie files allows remote attackers to construct malicious files that can be tricked into being parsed by an application, which can execute arbitrary code in the application context...
Apple QuickTime Memory Corruption Vulnerability (CNVD-2015-04263)
Apple QuickTime is a popular multimedia player. A vulnerability in Apple QuickTime's handling of special movie files allows remote attackers to construct malicious files that can be tricked into being parsed by an application, which can execute arbitrary code in the application context...
IRIX 6.5.x dmplay Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1528/info Certain versions of IRIX ship with a version of dmplay which is vulnerable to a buffer overflow attack. The program, dmplay, is used to play movie files under IRIX. The problem at hand is the way the program...
Apple QuickTime Multiple Vulnerabilities (Mar 2014) - Windows
Apple QuickTime player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:quicktime";...
KLA10016 Multiple vulnerabilities in Apple QuickTime
Multiple serious vulnerabilities have been found in Apple QuickTime. Malicious users can exploit these vulnerabilities to execute arbitrary code or cause denial of service. Below is a complete list of vulnerabilities 1. Improper byte-swapping can be exploited to execute arbitrary code or cause...
Apple iTunes < 11.1.4 Multiple Vulnerabilities (credentialed check)
The version of Apple iTunes installed on the remote Windows host is older than 11.1.4. It is, therefore, potentially affected by several issues : - The included versions of WebKit, libxml, and libxslt contain several errors that could lead to memory corruption and possibly arbitrary code executio...
APPLE-SA-2013-09-20-1 Apple TV 6.0
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-09-20-1 Apple TV 6.0 Apple TV 6.0 is now available and addresses the following: Apple TV Available for: Apple TV 2nd generation and later Impact: Viewing a maliciously crafted PDF file may lead to an unexpected application termination or...
Pirate Bay Founder Gottfrid Svartholm sentenced to 2 years in Sweden
The Pirate Bay co-founder Gottfrid Svartholm Warg was sentenced to two years in jail by Nacka district court, Sweden on Thursday for hacking into computers at a company that manages data for Swedish authorities and making illegal online money transfers. In Sweden, He is also involved in another...
Design/Logic Flaw
QuickTime in Apple Mac OS X before 10.7.2 does not properly process URL data handlers in movie files, which allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted file...