|
ffmpeg Multiple Vulnerabilities
|
|
Secunia Advisory:
|
SA36805
|
|
|
Release Date:
|
2009-09-21
|
|
Popularity:
|
2,159 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
DoS
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Partial Fix
|
|
| Software: | FFmpeg 0.x
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description:
Some vulnerabilities have been discovered in ffmpeg, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a user's system.
1) Multiple NULL-pointer dereference and division by zero errors when parsing ".ogv" and ".wmv" files can be exploited to cause a crash.
2) Multiple NULL-pointer dereference and division by zero errors when parsing AVI files can be exploited to cause a crash.
3) Multiple errors when processing ".ogv" files and "mjpg" encoded AVI files can be exploited to dereference invalid memory and cause a crash.
4) An error when processing "iv32" encoded AVI files can be exploited to corrupt heap memory and potentially execute arbitrary code.
5) An error when processing ".ogv" files can be exploited to trigger the execution of an infinite loop.
6) An error when processing "h264" encoded AVI files can be exploited to trigger a floating point exception.
7) An error when parsing MOV atoms can be exploited to trigger a NULL-pointer dereference.
8) An error when processing ".mp4" files can be exploited to corrupt heap memory and potentially execute arbitrary code.
9) An error in the AAC codec can be exploited to trigger an out-of-bounds read and cause a crash.
10) An error in the "mov_read_dref()" function can be exploited to cause a hang via a specially crafted ".mp4" file.
11) An error in the processing of ".ogv" files can be exploited to corrupt memory and potentially execute arbitrary code.
The vulnerabilities are confirmed in version 0.5. Other versions may also be affected.
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
