Lucene search
Ubuntu.comUB:CVE-2009-4631HistoryFeb 10, 2010 - 12:00 a.m.
CVE-2009-4631
2010-02-1000:00:00
ubuntu.com
ubuntu.com
10
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.017 Low
EPSS
Percentile
87.8%
Off-by-one error in the VP3 decoder (vp3.c) in FFmpeg 0.5 allows remote
attackers to cause a denial of service and possibly execute arbitrary code
via a crafted VP3 file that triggers an out-of-bounds read and possibly
memory corruption.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | 0.5.x doesn’t seem affected, can’t reproduce |
Related
debiancve
debiancve
CVE-2009-4631
2010-02-10 02:30:00
prion
prion
Memory corruption
2010-02-10 02:30:00
cvelist
cvelist
CVE-2009-4631
2010-02-10 02:00:00
cve
cve
CVE-2009-4631
2010-02-10 02:30:00
nvd
nvd
CVE-2009-4631
2010-02-10 02:30:00
openvas
openvas
Debian Security Advisory DSA 2000-1 (ffmpeg-debian)
2010-02-25 00:00:00
Debian: Security Advisory (DSA-2000-1)
2010-02-25 00:00:00
FFmpeg Multiple Vulnerabilities - Linux
2010-02-17 00:00:00
osv
osv
ffmpeg-debian - several vulnerabilities
2010-02-18 00:00:00
nessus
nessus
Debian DSA-2000-1 : ffmpeg-debian - several vulnerabilities
2010-02-24 00:00:00
GLSA-201310-12 : FFmpeg: Multiple vulnerabilities
2013-10-27 00:00:00
debian
debian
[SECURITY] [DSA 2000-1] New ffmpeg packages fix several vulnerabilities
2010-02-18 20:42:04
seebug
seebug
FFmpeg多个媒体文件解析拒绝服务和代码执行漏洞
2010-02-20 00:00:00
gentoo
gentoo
FFmpeg: Multiple vulnerabilities
2013-10-25 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.017 Low
EPSS
Percentile
87.8%
Related for UB:CVE-2009-4631