Lucene search
K

81 matches found

ptsecurity
ptsecurity
added 2025/07/08 12:0 a.m.4 views

PT-2025-28539 · Microsoft · Mpeg-2 Video Extension +1

Name of the Vulnerable Software and Affected Versions: Microsoft MPEG-2 Video Extension affected versions not specified Description: The issue is related to a use after free condition in the Microsoft MPEG-2 Video Extension, which allows an authorized attacker to execute code locally...

7.8CVSS6.2AI score0.00352EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2025/07/08 12:0 a.m.4 views

PT-2025-28538 · Microsoft · Mpeg-2 Video Extension +1

Name of the Vulnerable Software and Affected Versions: Microsoft MPEG-2 Video Extension affected versions not specified Description: The issue is related to a heap-based buffer overflow in the Microsoft MPEG-2 Video Extension, which allows an authorized attacker to execute code locally...

7.8CVSS6.5AI score0.00352EPSS
Exploits0References7
redhatcve
redhatcve
added 2025/05/21 11:31 p.m.7 views

CVE-2007-6718

MPlayer, possibly 1.0rc1, allows remote attackers to cause a denial of service SIGSEGV and application crash via 1 a malformed MP3 file, as demonstrated by lol-mplayer.mp3; 2 a malformed Ogg Vorbis file, as demonstrated by lol-mplayer.ogg; 3 a malformed MPEG-1 file, as demonstrated by...

7.6CVSS7AI score0.16048EPSS
Exploits3References1
gentoo
gentoo
added 2024/01/10 12:0 a.m.31 views

FAAD2: Multiple Vulnerabilities

Background FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder. Description Multiple vulnerabilities have been discovered in FAAD2. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...

6.5CVSS7.7AI score0.00898EPSS
Exploits2
cnvd
cnvd
added 2021/09/23 12:0 a.m.36 views

FAAD2 Heap Buffer Overflow Vulnerability

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. ltprediction function in ltpredict.c in FAAD2 2.10.0 and earlier versions is vulnerable to a heap buffer overflow vulnerability. An attacker could exploit this vulnerability t...

7.8CVSS5AI score0.01225EPSS
Exploits1References1
cnvd
cnvd
added 2021/09/23 12:0 a.m.39 views

FAAD2 Stack Buffer Overflow Vulnerability (CNVD-2021-89950)

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. a stack buffer overflow vulnerability exists in the ftypin function in mp4read.c in FAAD2 2.10.0 and earlier versions. An attacker could exploit this vulnerability to execute...

7.8CVSS6.4AI score0.01093EPSS
Exploits1References1
osv
osv
added 2021/09/15 12:15 p.m.4 views

CVE-2021-38644

Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability...

7.8CVSS5.9AI score0.02098EPSS
Exploits0References1
nvd
nvd
added 2021/09/15 12:15 p.m.27 views

CVE-2021-38644

Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability...

7.8CVSS0.02098EPSS
Exploits0References1
prion
prion
added 2021/09/15 12:15 p.m.18 views

Remote code execution

Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability...

6.8CVSS7.8AI score0.02098EPSS
Exploits0References1Affected Software1
cve
cve
added 2021/09/15 11:24 a.m.111 views

CVE-2021-38644

CVE-2021-38644 — The vulnerability affects the Windows MPEG-2 Video Extension. It stems from incorrect code generation management in the MPEG-2 Video Extension codec, enabling remote code execution. Exploitation has reportedly been used by malware in the wild. Affected products include Windows cl...

7.8CVSS7.6AI score0.02098EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2021/09/15 11:24 a.m.34 views

CVE-2021-38644 Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability

...

7.8CVSS8AI score0.02098EPSS
Exploits0References1
mscve
mscve
added 2021/09/14 7:0 a.m.60 views

Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.02098EPSS
Exploits0
nessus
nessus
added 2021/09/14 12:0 a.m.160 views

Microsoft Windows MPEG-2 Video Extension RCE (September 2021)

The Windows 'MPEG-2 Video Extension' app installed on the remote host is affected by a remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for this issue but has instead relied only...

7.8CVSS8.1AI score0.02098EPSS
Exploits0References2
cnvd
cnvd
added 2021/08/12 12:0 a.m.19 views

Live555 UAF Vulnerability

Live555 is a cross-platform C open source project that provides a solution for streaming media, which implements support for standard streaming media delivery protocols such as RTP/RTCP, RTSP, SIP, etc. A security vulnerability exists in Live555, which stems from the fact that the affected produc...

6.5CVSS1.8AI score0.0119EPSS
Exploits1References1
openvas
openvas
added 2021/08/11 12:0 a.m.14 views

Live555 Streaming Media < 2021.08.09 DoS Vulnerability - Windows

Live555 Streaming Media is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

6.5CVSS6.4AI score0.0119EPSS
Exploits1References2
openvas
openvas
added 2021/08/11 12:0 a.m.17 views

Live555 Streaming Media < 2021.08.09 DoS Vulnerability - Linux

Live555 Streaming Media is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

6.5CVSS6.4AI score0.0119EPSS
Exploits1References2
osv
osv
added 2021/08/10 6:15 p.m.2 views

CVE-2021-38381

Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash...

6.5CVSS6.8AI score0.0119EPSS
Exploits1References2
ubuntucve
ubuntucve
added 2021/08/10 6:15 p.m.35 views

CVE-2021-38381

Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash...

6.5CVSS6.8AI score0.0119EPSS
Exploits1References3
prion
prion
added 2021/08/10 6:15 p.m.14 views

Design/Logic Flaw

Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash...

4.3CVSS6.6AI score0.0119EPSS
Exploits1References2Affected Software1
alpinelinux
alpinelinux
added 2021/08/10 5:16 p.m.24 views

CVE-2021-38381

Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash...

6.5CVSS6.7AI score0.0119EPSS
Exploits1
Rows per page
Query Builder