51 matches found
Astra Linux - уязвимость в aom
It was discovered that AOM v2.0.1 contains a NULL pointer dereference through the component av1/av1dxiface.c...
Astra Linux - уязвимость в aom
It was discovered that AOM v2.0.1 contains a stack buffer overflow issue through the component stats/ratehist.c...
EUVD-2008-3922
Malware in sbrugna...
EUVD-2019-11527
Malware in sbrugna...
EUVD-2008-3923
Malware in sbrugna...
CVE-2011-10022 SPlayer 3.7 Content-Type Header Buffer Overflow
SPlayer version 3.7 and earlier is vulnerable to a stack-based buffer overflow when processing HTTP responses containing an overly long Content-Type header. The vulnerability occurs due to improper bounds checking on the header value, allowing an attacker to overwrite the Structured Exception...
CVE-2019-25086
A vulnerability was found in IET-OU Open Media Player up to 1.5.0. It has been declared as problematic. This vulnerability affects the function webvtt of the file application/controllers/timedtext.php. The manipulation of the argument ttmlurl leads to cross site scripting. The attack can be...
CVE-2008-3937
Multiple cross-site scripting XSS vulnerabilities in Open Media Collectors Database OpenDb 1.0.6 allow remote attackers to inject arbitrary web script or HTML via the 1 userid parameter in an edit action to useradmin.php, the 2 title parameter to listings.php, and the 3 redirecturl parameter to...
CVE-2008-3938
Cross-site request forgery CSRF vulnerability in useradmin.php in Open Media Collectors Database OpenDb 1.0.6 allows remote attackers to change arbitrary passwords via an updatepassword action...
USN-6815-1 aom vulnerability
Xiantong Hou discovered that AOM did not properly handle certain malformed media files. If an application using AOM opened a specially crafted file, a remote attacker could cause a denial of service, or possibly execute arbitrary code...
libaom: Multiple Vulnerabilities
Background libaom is the Alliance for Open Media's AV1 Codec SDK. Description Multiple vulnerabilities have been discovered in libaom. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...
SUSE CVE-2020-36129
AOM v2.0.1 was discovered to contain a stack buffer overflow via the component src/aomimage.c...
SUSE CVE-2020-36135
AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component ratehist.c...
CVE-2019-25086
A vulnerability was found in IET-OU Open Media Player up to 1.5.0. It has been declared as problematic. This vulnerability affects the function webvtt of the file application/controllers/timedtext.php. The manipulation of the argument ttmlurl leads to cross site scripting. The attack can be...
CVE-2019-25086
A vulnerability was found in IET-OU Open Media Player up to 1.5.0. It has been declared as problematic. This vulnerability affects the function webvtt of the file application/controllers/timedtext.php. The manipulation of the argument ttmlurl leads to cross site scripting. The attack can be...
Cross site scripting
A vulnerability was found in IET-OU Open Media Player up to 1.5.0. It has been declared as problematic. This vulnerability affects the function webvtt of the file application/controllers/timedtext.php. The manipulation of the argument ttmlurl leads to cross site scripting. The attack can be...
CVE-2019-25086 IET-OU Open Media Player timedtext.php webvtt cross site scripting
A vulnerability was found in IET-OU Open Media Player up to 1.5.0. It has been declared as problematic. This vulnerability affects the function webvtt of the file application/controllers/timedtext.php. The manipulation of the argument ttmlurl leads to cross site scripting. The attack can be...
CVE-2019-25086
The CVE-2019-25086 entry describes a cross-site scripting (XSS) vulnerability in IET-OU Open Media Player up to version 1.5.0, affected by the webvtt function in application/controllers/timedtext.php. Manipulating the ttml_url parameter enables remote XSS. A fix is available in version 1.5.1, wit...
Open Media Player 跨站脚本漏洞
Open Media Player is a mainstream audio and video player service open-sourced by the IET at the OU. A cross-site scripting vulnerability exists in versions of Open Media Player prior to 1.5.0, which stems from the fact that incorrect manipulation of the parameter ttmlurl can lead to cross-site...
AOM null pointer dereference vulnerability
Aom is a next-generation open source digital media technology for everyone organized by the Alliance For Open Media. version 2.0.1 of AOM contains a null pointer dereference vulnerability that stems from the presence of a NULL pointer for dereference in the component ratehist.c. No details of the...