Mplayer Security Vulnerabilities and Issues — Mplayer CVE List

Lucene search

MplayerMplayer

4 matches found

CVE•added 2008/02/05 12:0 p.m.•60 views

CVE-2008-0485

Array index error in libmpdemux/demux_mov.c in MPlayer 1.0 rc2 and earlier might allow remote attackers to execute arbitrary code via a QuickTime MOV file with a crafted stsc atom tag.

9.3CVSS7.2AI score0.19845EPSS

CVE•added 2008/02/05 12:0 p.m.•55 views

CVE-2008-0486

Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow.

7.5CVSS7.3AI score0.0457EPSS

CVE•added 2008/02/06 9:0 p.m.•49 views

CVE-2008-0629

Buffer overflow in stream_cddb.c in MPlayer 1.0rc2 and SVN before r25824 allows remote user-assisted attackers to execute arbitrary code via a CDDB database entry containing a long album title.

4.3CVSS7.5AI score0.02652EPSS

CVE•added 2008/02/06 9:0 p.m.•44 views

CVE-2008-0630

Buffer overflow in url.c in MPlayer 1.0rc2 and SVN before r25823 allows remote attackers to execute arbitrary code via a crafted URL that prevents the IPv6 parsing code from setting a pointer to NULL, which causes the buffer to be reused by the unescape code.

6.8CVSS7.5AI score0.06989EPSS