Mplayer@1.0 pre1 Security Vulnerabilities and Issues — Mplayer@1.0 pre1 CVE List

Lucene search

MplayerMplayer1.0 pre1

10 matches found

CVE•added 2004/05/04 4:0 a.m.•61 views

CVE-2004-0386

Buffer overflow in the HTTP parser for MPlayer 1.0pre3 and earlier, 0.90, and 0.91 allows remote attackers to execute arbitrary code via a long Location header.

10CVSS7.7AI score0.34063EPSS

CVE•added 2008/09/29 7:25 p.m.•61 views

CVE-2008-3827

Multiple integer underflows in the Real demuxer (demux_real.c) in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service (process termination) and possibly execute arbitrary code via a crafted video file that causes the stream_read function to read or write arbitrary memory...

9.3CVSS7.4AI score0.02752EPSS

CVE•added 2008/12/17 1:30 a.m.•57 views

CVE-2008-5616

Stack-based buffer overflow in the demux_open_vqf function in libmpdemux/demux_vqf.c in MPlayer 1.0 rc2 before r28150 allows remote attackers to execute arbitrary code via a malformed TwinVQ file.

10CVSS7.6AI score0.30642EPSS

CVE•added 2008/10/20 5:59 p.m.•53 views

CVE-2007-6718

MPlayer, possibly 1.0rc1, allows remote attackers to cause a denial of service (SIGSEGV and application crash) via (1) a malformed MP3 file, as demonstrated by lol-mplayer.mp3; (2) a malformed Ogg Vorbis file, as demonstrated by lol-mplayer.ogg; (3) a malformed MPEG-1 file, as demonstrated by lol-m...

4.3CVSS6.4AI score0.09501EPSS

CVE•added 2008/10/20 5:59 p.m.•52 views

CVE-2008-4610

MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated by lol-ffplay.ogm, different vectors than CVE-2007-6718.

5CVSS6.3AI score0.03636EPSS

CVE•added 2004/08/06 4:0 a.m.•45 views

CVE-2004-0659

Buffer overflow in TranslateFilename for common.c in MPlayer 1.0pre4 allows remote attackers to execute arbitrary code via a long file name.

10CVSS7.8AI score0.04453EPSS

CVE•added 2005/01/10 5:0 a.m.•43 views

CVE-2004-1187

Heap-based buffer overflow in the pnm_get_chunk function for xine 0.99.2, and other packages such as MPlayer that use the same code, allows remote attackers to execute arbitrary code via long PNA_TAG values, a different vulnerability than CVE-2004-1188.

10CVSS7.8AI score0.05704EPSS

CVE•added 2005/01/10 5:0 a.m.•43 views

CVE-2004-1188

The pnm_get_chunk function in xine 0.99.2 and earlier, and other packages such as MPlayer that use the same code, does not properly verify that the chunk size is less than the PREAMBLE_SIZE, which causes a read operation with a negative length that leads to a buffer overflow via (1) RMF_TAG, (2) DA...

10CVSS6.6AI score0.05704EPSS

CVE•added 2003/11/17 5:0 a.m.•37 views

CVE-2003-0835

Multiple buffer overflows in asf_http_request of MPlayer before 0.92 allows remote attackers to execute arbitrary code via an ASX header with a long hostname.

7.5CVSS7.8AI score0.05063EPSS

CVE•added 2005/01/10 5:0 a.m.•32 views

CVE-2004-1285

Buffer overflow in the get_header function in asf_mmst_streaming.c for MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a crafted ASF video stream.

10CVSS7.9AI score0.04439EPSS