81 matches found
PT-2025-28539 · Microsoft · Mpeg-2 Video Extension +1
Name of the Vulnerable Software and Affected Versions: Microsoft MPEG-2 Video Extension affected versions not specified Description: The issue is related to a use after free condition in the Microsoft MPEG-2 Video Extension, which allows an authorized attacker to execute code locally...
PT-2025-28538 · Microsoft · Mpeg-2 Video Extension +1
Name of the Vulnerable Software and Affected Versions: Microsoft MPEG-2 Video Extension affected versions not specified Description: The issue is related to a heap-based buffer overflow in the Microsoft MPEG-2 Video Extension, which allows an authorized attacker to execute code locally...
CVE-2007-6718
MPlayer, possibly 1.0rc1, allows remote attackers to cause a denial of service SIGSEGV and application crash via 1 a malformed MP3 file, as demonstrated by lol-mplayer.mp3; 2 a malformed Ogg Vorbis file, as demonstrated by lol-mplayer.ogg; 3 a malformed MPEG-1 file, as demonstrated by...
FAAD2: Multiple Vulnerabilities
Background FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder. Description Multiple vulnerabilities have been discovered in FAAD2. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...
FAAD2 Heap Buffer Overflow Vulnerability
Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. ltprediction function in ltpredict.c in FAAD2 2.10.0 and earlier versions is vulnerable to a heap buffer overflow vulnerability. An attacker could exploit this vulnerability t...
FAAD2 Stack Buffer Overflow Vulnerability (CNVD-2021-89950)
Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. a stack buffer overflow vulnerability exists in the ftypin function in mp4read.c in FAAD2 2.10.0 and earlier versions. An attacker could exploit this vulnerability to execute...
CVE-2021-38644
Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability...
CVE-2021-38644
Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability...
Remote code execution
Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability...
CVE-2021-38644
CVE-2021-38644 — The vulnerability affects the Windows MPEG-2 Video Extension. It stems from incorrect code generation management in the MPEG-2 Video Extension codec, enabling remote code execution. Exploitation has reportedly been used by malware in the wild. Affected products include Windows cl...
CVE-2021-38644 Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability
...
Microsoft MPEG-2 Video Extension Remote Code Execution Vulnerability
...
Microsoft Windows MPEG-2 Video Extension RCE (September 2021)
The Windows 'MPEG-2 Video Extension' app installed on the remote host is affected by a remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for this issue but has instead relied only...
Live555 UAF Vulnerability
Live555 is a cross-platform C open source project that provides a solution for streaming media, which implements support for standard streaming media delivery protocols such as RTP/RTCP, RTSP, SIP, etc. A security vulnerability exists in Live555, which stems from the fact that the affected produc...
Live555 Streaming Media < 2021.08.09 DoS Vulnerability - Windows
Live555 Streaming Media is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...
Live555 Streaming Media < 2021.08.09 DoS Vulnerability - Linux
Live555 Streaming Media is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...
CVE-2021-38381
Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash...
CVE-2021-38381
Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash...
Design/Logic Flaw
Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash...
CVE-2021-38381
Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash...