flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-94,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| mplayerhq | mplayer | 0.92 |
| ffmpeg | ffmpeg | 0.4.2 |
| mplayerhq | mplayer | * |
| mplayerhq | mplayer | 0.06 |
| mplayerhq | mplayer | 0.90 |
| mplayerhq | mplayer | 0.07 |
| ffmpeg | ffmpeg | * |
| ffmpeg | ffmpeg | 0.3.2 |
| ffmpeg | ffmpeg | 0.4.0 |
| ffmpeg | ffmpeg | 0.4.7 |
| mplayerhq | mplayer | 0.02 |
| mplayerhq | mplayer | 0.91 |
| ffmpeg | ffmpeg | 0.4.8 |
| mplayerhq | mplayer | 0.50 |
| ffmpeg | ffmpeg | 0.4.3 |
| ffmpeg | ffmpeg | 0.4.9 |
| mplayerhq | mplayer | 0.18 |
| ffmpeg | ffmpeg | 0.4.4 |
| mplayerhq | mplayer | 0.05 |
| ffmpeg | ffmpeg | 0.3.4 |
| mplayerhq | mplayer | 0.09 |
| ffmpeg | ffmpeg | 0.3.1 |
| mplayerhq | mplayer | 0.17a_idegcounter |
| mplayerhq | mplayer | 1.0 |
| mplayerhq | mplayer | 0.60 |
| ffmpeg | ffmpeg | 0.4.6 |
| mplayerhq | mplayer | 0.08 |
| ffmpeg | libavcodec | * |
| ffmpeg | ffmpeg | 0.5 |
| mplayerhq | mplayer | 0.10 |
| mplayerhq | mplayer | 0.92.1 |
| ffmpeg | ffmpeg | 0.3 |
| ffmpeg | ffmpeg | 0.3.3 |
| mplayerhq | mplayer | 0.93 |
| mplayerhq | mplayer | 0.11 |
| mplayerhq | mplayer | 0.17_idegcounter |
| mplayerhq | mplayer | 0.01 |
| ffmpeg | ffmpeg | 0.4.5 |
FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a malformed WMV file.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| ffmpeg | ffmpeg | 0.4.4 |
| ffmpeg | ffmpeg | 0.3.4 |
| ffmpeg | ffmpeg | 0.4.2 |
| mplayerhq | mplayer | * |
| ffmpeg | ffmpeg | 0.3.1 |
| ffmpeg | ffmpeg | 0.4.6 |
| ffmpeg | ffmpeg | * |
| ffmpeg | ffmpeg | 0.3.2 |
| ffmpeg | ffmpeg | 0.4.0 |
| ffmpeg | ffmpeg | 0.5 |
| ffmpeg | ffmpeg | 0.4.7 |
| ffmpeg | ffmpeg | 0.3 |
| ffmpeg | ffmpeg | 0.3.3 |
| ffmpeg | ffmpeg | 0.5.1 |
| ffmpeg | ffmpeg | 0.5.2 |
| ffmpeg | ffmpeg | 0.4.8 |
| ffmpeg | ffmpeg | 0.4.3 |
| ffmpeg | ffmpeg | 0.4.5 |
| ffmpeg | ffmpeg | 0.4.9 |
FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a malformed RealMedia file.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| ffmpeg | ffmpeg | 0.4.4 |
| ffmpeg | ffmpeg | 0.3.4 |
| ffmpeg | ffmpeg | 0.4.2 |
| mplayerhq | mplayer | * |
| ffmpeg | ffmpeg | 0.3.1 |
| ffmpeg | ffmpeg | 0.4.6 |
| ffmpeg | ffmpeg | * |
| ffmpeg | ffmpeg | 0.3.2 |
| ffmpeg | ffmpeg | 0.4.0 |
| ffmpeg | ffmpeg | 0.5 |
| ffmpeg | ffmpeg | 0.4.7 |
| ffmpeg | ffmpeg | 0.3 |
| ffmpeg | ffmpeg | 0.3.3 |
| ffmpeg | ffmpeg | 0.5.1 |
| ffmpeg | ffmpeg | 0.5.2 |
| ffmpeg | ffmpeg | 0.4.8 |
| ffmpeg | ffmpeg | 0.4.3 |
| ffmpeg | ffmpeg | 0.4.5 |
| ffmpeg | ffmpeg | 0.4.9 |
The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does not properly restrict read operations, which allows remote attackers to have an unspecified impact via a crafted VC-1 file, a related issue to CVE-2011-0723.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| ffmpeg | ffmpeg | 0.4.4 |
| ffmpeg | ffmpeg | 0.3.4 |
| ffmpeg | ffmpeg | 0.4.2 |
| mplayerhq | mplayer | * |
| ffmpeg | ffmpeg | 0.3.1 |
| ffmpeg | ffmpeg | 0.4.6 |
| ffmpeg | ffmpeg | * |
| ffmpeg | ffmpeg | 0.3.2 |
| ffmpeg | ffmpeg | 0.4.0 |
| ffmpeg | ffmpeg | 0.5 |
| ffmpeg | ffmpeg | 0.4.7 |
| ffmpeg | ffmpeg | 0.3 |
| ffmpeg | ffmpeg | 0.3.3 |
| ffmpeg | ffmpeg | 0.5.1 |
| ffmpeg | ffmpeg | 0.5.2 |
| ffmpeg | ffmpeg | 0.4.8 |
| ffmpeg | ffmpeg | 0.4.3 |
| ffmpeg | ffmpeg | 0.4.5 |
| ffmpeg | ffmpeg | 0.4.9 |
Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 (aka CS4.0); and Mandriva Enterprise Server 5 (aka MES5) have unknown impact and attack vectors, related to issues "originally discovered by Google Chrome developers."
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| ffmpeg | ffmpeg | 0.5.3 |
| ffmpeg | ffmpeg | 0.4.4 |
| ffmpeg | ffmpeg | 0.6.1 |
| mandriva | linux | 2009.0 |
| ffmpeg | ffmpeg | 0.4.2 |
| ffmpeg | ffmpeg | 0.5.4 |
| mplayerhq | mplayer | 1.0 |
| mandriva | enterprise_server | 5 |
| ffmpeg | ffmpeg | 0.4.6 |
| mandriva | linux | 2010.0 |
| ffmpeg | ffmpeg | 0.4.0 |
| ffmpeg | ffmpeg | 0.4.7 |
| ffmpeg | ffmpeg | 0.5.1 |
| ffmpeg | ffmpeg | 0.5.2 |
| mandriva | corporate_server | 4.0 |
| mandriva | linux | 2010.1 |
| ffmpeg | ffmpeg | 0.4.8 |
| ffmpeg | ffmpeg | 0.4.3 |
| ffmpeg | ffmpeg | 0.4.5 |
| ffmpeg | ffmpeg | 0.4.9 |
The MPlayer Project v1.5 was discovered to contain a heap use-after-free resulting in a double free in the preinit function at libvo/vo_v4l2.c. This vulnerability can lead to a Denial of Service (DoS) via a crafted file. The device=strdup statement is not executed on every call. Note: This has been disputed by third parties as invalid and not reproduceable.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 5.5 | MEDIUM | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H | 1.8 | 3.6 |
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-416,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| mplayerhq | mplayer | 1.5 |
Mplayer SVN-r38374-13.0.1 is vulnerable to Memory Leak via vf.c and vf_vo.c.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 5.5 | MEDIUM | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H | 1.8 | 3.6 |
Products Affected
| Vendor | Product | Version |
|---|---|---|
| mplayerhq | mplayer | svn-r38374-13.0.1 |
The MPlayer Project mencoder SVN-r38374-13.0.1 is vulnerable to Divide By Zero via the function config () of llibmpcodecs/vf_scale.c.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 10.0 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |
Certain The MPlayer Project products are vulnerable to Out-of-bounds Read via function read_meta_record() of mplayer/libmpdemux/asfheader.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 10.0 |
| mplayerhq | mplayer | svn-r38374-13.0.1 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |
Certain The MPlayer Project products are vulnerable to Buffer Overflow via function asf_init_audio_stream() of libmpdemux/asfheader.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 5.5 | MEDIUM | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H | 1.8 | 3.6 |
Products Affected
| Vendor | Product | Version |
|---|---|---|
| mplayerhq | mplayer | svn-r38374-13.0.1 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |
Certain The MPlayer Project products are vulnerable to Buffer Overflow via function gen_sh_video () of mplayer/libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 10.0 |
| mplayerhq | mplayer | svn-r38374-13.0.1 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |
Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mov_build_index() of libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 5.5 | MEDIUM | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H | 1.8 | 3.6 |
Products Affected
| Vendor | Product | Version |
|---|---|---|
| mplayerhq | mplayer | svn-r38374-13.0.1 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |
Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mov_build_index() of libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 10.0 |
| mplayerhq | mplayer | svn-r38374-13.0.1 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |
Certain The MPlayer Project products are vulnerable to Divide By Zero via function demux_open_avi() of libmpdemux/demux_avi.c which affects mencoder. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 10.0 |
| mplayerhq | mplayer | svn-r38374-13.0.1 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |
The MPlayer Project mplayer SVN-r38374-13.0.1 is vulnerable to memory corruption via function free_mp_image() of libmpcodecs/mp_image.c.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 10.0 |
| mplayerhq | mplayer | svn-r38374-13.0.1 |
Certain The MPlayer Project products are vulnerable to Buffer Overflow via function play() of libaf/af.c:639. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 7.8 | HIGH | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | 1.8 | 5.9 |
Products Affected
| Vendor | Product | Version |
|---|---|---|
| mplayerhq | mplayer | svn-r38374-13.0.1 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |
Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mp_getbits() of libmpdemux/mpeg_hdr.c which affects mencoder and mplayer. This affects mecoder SVN-r38374-13.0.1 and mplayer SVN-r38374-13.0.1.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 10.0 |
| mplayerhq | mplayer | svn-r38374-13.0.1 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |
Certain The MPlayer Project products are vulnerable to Buffer Overflow via the function mp_unescape03() of libmpdemux/mpeg_hdr.c. This affects mencoder SVN-r38374-13.0.1 and mplayer SVN-r38374-13.0.1.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 10.0 |
| mplayerhq | mplayer | svn-r38374-13.0.1 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |
Certain The MPlayer Project products are vulnerable to Divide By Zero via the function demux_avi_read_packet of libmpdemux/demux_avi.c. This affects mplyer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 10.0 |
| mplayerhq | mplayer | svn-r38374-13.0.1 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |
Certain The MPlayer Project products are vulnerable to Buffer Overflow via read_avi_header() of libmpdemux/aviheader.c . This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 10.0 |
| mplayerhq | mplayer | svn-r38374-13.0.1 |
| mplayerhq | mencoder | svn-r38374-13.0.1 |