exploitDog

CVE-2008-0486

Опубликовано: 04 фев. 2008

Источник: redhat

EPSS Низкий

Описание

Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow.

Ссылки на источники

Дополнительная информация

Статус:

Important

https://bugzilla.redhat.com/show_bug.cgi?id=431541mplayer: array indexing vulnerability in FLAC parsing code

EPSS

Процентиль: 89%

0.0457

Низкий

Связанные уязвимости

CVE-2008-0486

ubuntu

больше 17 лет назад

Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow.

CVE-2008-0486

nvd

больше 17 лет назад

Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow.

CVE-2008-0486

debian

больше 17 лет назад

Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc ...

GHSA-q27c-cfcq-96m5

github

больше 3 лет назад

Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow.

EPSS

Процентиль: 89%

0.0457

Низкий