Lucene search
Ubuntu.comUB:CVE-2007-4938HistorySep 18, 2007 - 12:00 a.m.
CVE-2007-4938
2007-09-1800:00:00
ubuntu.com
ubuntu.com
11
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.164 Low
EPSS
Percentile
96.0%
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and
earlier allows remote attackers to cause a denial of service (application
crash) or possibly execute arbitrary code via a .avi file with certain
large “indx truck size” and nEntriesInuse values, and a certain
wLongsPerEntry value.
Bugs
Notes
| Author | Note |
|---|---|
| jdstrand | fix in MDKSA-2007:192 |
Related
nvd
nvd
CVE-2007-4938
2007-09-18 19:17:00
CVE-2007-6718
2008-10-20 17:59:23
openvas
openvas
Mandriva Update for mplayer MDKSA-2007:192 (mplayer)
2009-04-09 00:00:00
Mandriva Update for mplayer MDKSA-2007:192 (mplayer)
2009-04-09 00:00:00
securityvulns
securityvulns
[ MDKSA-2007:192 ] - Updated mplayer packages fix vulnerability
2007-10-04 00:00:00
MPlayer buffer overflow
2007-10-04 00:00:00
cve
cve
CVE-2007-4938
2007-09-18 19:17:00
CVE-2007-6718
2022-10-03 16:14:28
debiancve
debiancve
CVE-2007-4938
2007-09-18 19:17:00
CVE-2007-6718
2022-10-03 16:14:28
prion
prion
Heap overflow
2007-09-18 19:17:00
Design/Logic Flaw
2008-10-20 17:59:00
cvelist
cvelist
CVE-2007-4938
2007-09-18 19:00:00
CVE-2007-6718
2022-10-03 16:14:28
ubuntucve
ubuntucve
CVE-2007-6718
2008-10-20 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : mplayer (MDKSA-2007:192)
2007-10-03 00:00:00
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.164 Low
EPSS
Percentile
96.0%
Related for UB:CVE-2007-4938