Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0630

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2008-0630
Last Modified 05 Sep 2008 05:35:35
Published 06 Feb 2008 04:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-0630

Summary

Buffer overflow in url.c in MPlayer 1.0rc2 and SVN before r25823 allows remote attackers to execute arbitrary code via a crafted URL that prevents the IPv6 parsing code from setting a pointer to NULL, which causes the buffer to be reused by the unescape code.

Vulnerable Systems

Application

  • Mplayer 1.02rc2


References

CONFIRM - http://www.mplayerhq.hu/design7/news.html

BID - 27766

MANDRIVA - MDVSA-2008:045

DEBIAN - DSA-1496

GENTOO - GLSA-200803-16

SECUNIA - 29307

SECUNIA - 28956

SECUNIA - 28955


Last Updated: 27 May 2016 10:46:52