Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0835

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0835
Last Modified 10 Sep 2008 03:20:37
Published 17 Nov 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0835

Summary

Multiple buffer overflows in asf_http_request of MPlayer before 0.92 allows remote attackers to execute arbitrary code via an ASX header with a long hostname.

Vulnerable Systems

Application

  • Mplayer 0.90

  • Mplayer 0.90 Pre

  • Mplayer 0.90 Rc

  • Mplayer 0.90 Rc4

  • Mplayer 0.91

  • Mplayer 1.0 Pre1


References

BUGTRAQ - 20030925 MPlayer Security Advisory #01: Remotely exploitable buffer overflow

CONFIRM - http://www.mplayerhq.hu/homepage/design6/news.html

BUGTRAQ - 20030929 GLSA: media-video/mplayer (200309-15)

BUGTRAQ - 20030926 Mplayer Buffer Overflow

CONECTIVA - CLA-2003:760


Last Updated: 27 May 2016 10:38:04