CVE-2006-4800

2006-09-1400:00:00

ubuntu.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.072 Low

EPSS

Percentile

93.9%

JSON

Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530
allow remote attackers to cause a denial of service or possibly execute
arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2)
vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c,
(8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and
(13) tta.c. NOTE: it is likely that this is a different vulnerability than
CVE-2005-4048 and CVE-2006-2802.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchffmpeg< 0.cvs20050918-5ubuntu1.1UNKNOWN
ubuntu7.04noarchgst-ffmpeg< 0.8.7-10ubuntu1UNKNOWN
ubuntu7.04noarchgstreamer0.10-ffmpeg< 0.10.2-0ubuntu4UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.06	noarch	ffmpeg	< 0.cvs20050918-5ubuntu1.1	UNKNOWN
ubuntu	7.04	noarch	gst-ffmpeg	< 0.8.7-10ubuntu1	UNKNOWN
ubuntu	7.04	noarch	gstreamer0.10-ffmpeg	< 0.10.2-0ubuntu4	UNKNOWN