ogv-elversberg.de Improper Access Control vulnerability OBB-3776950

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2023-45675

CVE-2023-45675 affects stb_vorbis library; a crafted Ogg Vorbis file may trigger an out-of-bounds write in f->vendor[len] via start_decoder length handling. Root cause: when len is -1, len+1 becomes 0 for setup_malloc, which behaves differently if f->alloc.alloc_buffer is pre-allocated, ret...

ogv-lauchheim.de Improper Access Control vulnerability OBB-2224853

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

ogv-vaihingen-enz.de XSS vulnerability

Open Bug Bounty ID: OBB-686791 Description| Value ---|--- Affected Website:| ogv-vaihingen-enz.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...

FFmpeg多个媒体文件解析拒绝服务和代码执行漏洞

BUGTRAQ ID: 36465 CVE ID: CVE-2009-4631,CVE-2009-4632,CVE-2009-4633,CVE-2009-4634,CVE-2009-4635,CVE-2009-4636,CVE-2009-4637,CVE-2009-4638,CVE-2009-4639,CVE-2009-4640 FFmpeg是一套对音频和视频进行解码录制转换的完整方案。 ffmpeg解析各种媒体文件时存在多个空指针引用、内存越界或死循环等漏洞，可能导致拒绝服务或执行任意代码。 1 解析AVI、.ogv和.wmv文件时的空指针引用和0除数错误可能导致崩溃。 2...

FFmpeg OGV File Format Memory Corruption

FFmpeg is a set of libraries and executables that can be used to record, convert and stream digital audio and video in numerous formats. FFmpeg is a command line tool that is composed of a collection of free software / open source libraries. FFmpeg has the ability to convert between, and play,...