Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:11 a.m.6 views

CVE-2019-11339

The studio profile decoder in libavcodec/mpeg4videodec.c in FFmpeg 4.0 before 4.0.4 and 4.1 before 4.1.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via crafted MPEG-4 video data...

8.8CVSS7.7AI score0.02751EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-3020

Malware in sbrugna...

8.8CVSS8.6AI score0.02751EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-4516

Malware in sbrugna...

9.3CVSS8.4AI score0.04021EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-2199

Malware in sbrugna...

9.3CVSS6.1AI score0.05718EPSS
Exploits0References8
Cvelist
Cvelist
added 2019/04/18 11:52 p.m.29 views

CVE-2019-11339

The studio profile decoder in libavcodec/mpeg4videodec.c in FFmpeg 4.0 before 4.0.4 and 4.1 before 4.1.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via crafted MPEG-4 video data...

9AI score0.02751EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2019/04/18 12:0 a.m.27 views

CVE-2019-11339

The studio profile decoder in libavcodec/mpeg4videodec.c in FFmpeg 4.0 before 4.0.4 and 4.1 before 4.1.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via crafted MPEG-4 video data...

8.8CVSS7.2AI score0.02751EPSS
Exploits0References4
NVD
NVD
added 2015/08/16 1:59 a.m.25 views

CVE-2015-4496

Multiple integer overflows in libstagefright in Mozilla Firefox before 38.0 allow remote attackers to execute arbitrary code via crafted sample metadata in an MPEG-4 video file, a related issue to CVE-2015-1538...

9.3CVSS6.6AI score0.04021EPSS
Exploits0References4
NVD
NVD
added 2015/08/16 1:59 a.m.15 views

CVE-2015-4480

Integer overflow in the stagefright::SampleTable::isValid function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via crafted MPEG-4 video data with H.264 encoding...

9.3CVSS9.7AI score0.05715EPSS
Exploits0References14
NVD
NVD
added 2015/08/16 1:59 a.m.19 views

CVE-2015-4479

Multiple integer overflows in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allow remote attackers to execute arbitrary code via a crafted saio chunk in MPEG-4 video data...

10CVSS9.5AI score0.09027EPSS
Exploits0References19
Prion
Prion
added 2015/08/16 1:59 a.m.27 views

Integer overflow

Multiple integer overflows in libstagefright in Mozilla Firefox before 38.0 allow remote attackers to execute arbitrary code via crafted sample metadata in an MPEG-4 video file, a related issue to CVE-2015-1538...

9.3CVSS7.9AI score0.99064EPSS
Exploits6References4Affected Software2
UbuntuCve
UbuntuCve
added 2015/08/16 1:59 a.m.36 views

CVE-2015-4496

Multiple integer overflows in libstagefright in Mozilla Firefox before 38.0 allow remote attackers to execute arbitrary code via crafted sample metadata in an MPEG-4 video file, a related issue to CVE-2015-1538...

9.3CVSS7.5AI score0.04021EPSS
Exploits0References4
Prion
Prion
added 2015/08/16 1:59 a.m.27 views

Integer overflow

Integer overflow in the stagefright::SampleTable::isValid function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via crafted MPEG-4 video data with H.264 encoding...

9.3CVSS8.3AI score0.05715EPSS
Exploits0References14Affected Software4
Prion
Prion
added 2015/08/16 1:59 a.m.24 views

Heap overflow

Heap-based buffer overflow in the stagefright::ESDS::parseESDescriptor function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via an invalid size field in an esds chunk in MPEG-4 video data, a related issue to...

9.3CVSS8.5AI score0.85792EPSS
Exploits0References15Affected Software5
Prion
Prion
added 2015/08/16 1:59 a.m.20 views

Integer overflow

Multiple integer overflows in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allow remote attackers to execute arbitrary code via a crafted saio chunk in MPEG-4 video data...

10CVSS7.9AI score0.09027EPSS
Exploits0References19Affected Software4
Cvelist
Cvelist
added 2015/08/16 1:0 a.m.30 views

CVE-2015-4496

Multiple integer overflows in libstagefright in Mozilla Firefox before 38.0 allow remote attackers to execute arbitrary code via crafted sample metadata in an MPEG-4 video file, a related issue to CVE-2015-1538...

7.6AI score0.04021EPSS
Exploits0References4
CVE
CVE
added 2015/08/16 1:0 a.m.154 views

CVE-2015-4479

CVE-2015-4479 is a memory/bounds-violation in Mozilla Firefox’s handling of MPEG-4 video (libstagefright), triggered by an saio chunk in MPEG-4 data. The vulnerability allows remote code execution on affected browsers prior to Firefox 40.0 and Firefox ESR 38.x prior to 38.2. Public advisories (in...

10CVSS7.2AI score0.09027EPSS
Exploits0References19Affected Software1
Cvelist
Cvelist
added 2015/08/16 1:0 a.m.32 views

CVE-2015-4493

Heap-based buffer overflow in the stagefright::ESDS::parseESDescriptor function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via an invalid size field in an esds chunk in MPEG-4 video data, a related issue to...

9.9AI score0.07357EPSS
Exploits0References15
CVE
CVE
added 2015/08/16 1:0 a.m.103 views

CVE-2015-4480

CVE-2015-4480 : An integer overflow in stagefright::SampleTable::isValid within libstagefright could allow remote code execution via crafted MPEG-4 video data (H.264) in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2. Affected versions require upgrading to Firefox 40 or ESR 38.2+ to...

9.3CVSS9.6AI score0.05715EPSS
Exploits0References14Affected Software2
UbuntuCve
UbuntuCve
added 2015/08/11 12:0 a.m.23 views

CVE-2015-4493

Heap-based buffer overflow in the stagefright::ESDS::parseESDescriptor function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via an invalid size field in an esds chunk in MPEG-4 video data, a related issue to...

9.3CVSS7.9AI score0.07357EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2010/09/15 12:0 a.m.17 views

MPEG-4 Codec RCE Vulnerability (975558)

This host is missing a critical security update according to Microsoft Bulletin MS10-062. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.13945EPSS
Exploits0References3
Rows per page
Query Builder