2.6 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
0.012 Low
EPSS
Percentile
85.0%
Heap-based buffer overflow in the MPV_frame_start function in
libavcodec/mpegvideo.c in FFmpeg before 0.9.1, when the lowres option is
enabled, allows remote attackers to cause a denial of service (application
crash) via a crafted H263 media file. NOTE: this vulnerability exists
because of a regression error.
Author | Note |
---|---|
mdeslaur | code not present in libav and old ffmpeg |