Lucene search
Ubuntu.comUB:CVE-2008-4867HistoryOct 31, 2008 - 12:00 a.m.
CVE-2008-4867
2008-10-3100:00:00
ubuntu.com
ubuntu.com
13
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.007
Percentile
79.9%
Buffer overflow in libavcodec/dca.c in FFmpeg 0.4.9 before r14917, as used
by MPlayer, allows context-dependent attackers to have an unknown impact
via vectors related to an incorrect DCA_MAX_FRAME_SIZE value.
Bugs
- <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504977>
- <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496612>
Notes
| Author | Note |
|---|---|
| mdeslaur | kino is built with --disable-local-ffmpeg, so it’s not vulnerable |
Related
prion
prion
Buffer overflow
2008-11-01 00:00:00
cvelist
cvelist
CVE-2008-4867
2008-10-31 22:00:00
debiancve
debiancve
CVE-2008-4867
2008-11-01 00:00:01
nvd
nvd
CVE-2008-4867
2008-11-01 00:00:01
cve
cve
CVE-2008-4867
2008-11-01 00:00:01
nessus
nessus
Mandriva Linux Security Advisory : ffmpeg (MDVSA-2009:015)
2009-04-23 00:00:00
Mandriva Linux Security Advisory : mplayer (MDVSA-2009:013)
2009-04-23 00:00:00
Mandriva Linux Security Advisory : mplayer (MDVSA-2009:014)
2009-04-23 00:00:00
openvas
openvas
Mandrake Security Advisory MDVSA-2009:015 (ffmpeg)
2009-01-20 00:00:00
Mandrake Security Advisory MDVSA-2009:015 (ffmpeg)
2009-01-20 00:00:00
Mandrake Security Advisory MDVSA-2009:014 (mplayer)
2009-01-20 00:00:00
ubuntu
ubuntu
FFmpeg vulnerabilities
2009-03-16 00:00:00
gentoo
gentoo
FFmpeg: Multiple vulnerabilities
2009-03-19 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.007
Percentile
79.9%
Related for UB:CVE-2008-4867