Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1558

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-1558
Last Modified 07 Mar 2011 10:07:16
Published 31 Mar 2008 01:44:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-1558

Summary

Uncontrolled array index in the sdpplin_parse function in stream/realrtsp/sdpplin.c in MPlayer 1.0 rc2 allows remote attackers to overwrite memory and execute arbitrary code via a large streamid SDP parameter. NOTE: this issue has been referred to as an integer overflow.

Vulnerable Systems

Application

  • Mplayer 1.0 Rc2


References

VUPEN - ADV-2008-0997

MILW0RM - 5307

MANDRIVA - MDVSA-2008:196

GENTOO - GLSA-200805-22

SECUNIA - 30412

SECUNIA - 29515

XF - mplayer-sdpplin-overflow(41490)

BID - 28851

DEBIAN - DSA-1552

SECUNIA - 29921


Last Updated: 27 May 2016 10:47:34