Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4938

Overview

Vulnerability Score 7.6 7.6
CVE Id CVE-2007-4938
Last Modified 15 Nov 2008 01:59:07
Published 18 Sep 2007 03:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2007-4938

Summary

Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry value.

Vulnerable Systems

Operating System

  • Sgi Irix

Application

  • Mplayer 1.0 Rc1


References

XF - mplayer-avi-file-bo(36581)

MISC - http://www.vulnhunt.com/advisories/CAL-20070912-1_Multiple_vendor_produce_handling_AVI_file_vulnerabilities.txt

BID - 25648

BUGTRAQ - 20070912 CAL-20070912-1 Multiple vendor produce handling AVI file vulnerabilities

MANDRIVA - MDKSA-2007:192

SREASON - 3144

SECUNIA - 27016

OSVDB - 45940


Last Updated: 27 May 2016 10:46:01