Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3230

Overview

Vulnerability Score 1.9 1.9
CVE Id CVE-2008-3230
Last Modified 24 Nov 2009 01:50:17
Published 18 Jul 2008 12:41:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2008-3230

Summary

The ffmpeg lavf demuxer allows user-assisted attackers to cause a denial of service (application crash) via a crafted GIF file, possibly related to gstreamer, as demonstrated by lol-giftopnm.gif.

Vulnerable Systems

Application

  • Ffmpeg Lavf Demuxer


References

MISC - https://roundup.mplayerhq.hu/roundup/ffmpeg/issue530

XF - ffmpeg-demuxer-dos(44210)

BID - 31234

MLIST - [oss-security] 20080713 CVE requests: crashers by zzuf

MANDRIVA - MDVSA-2009:297

SECUNIA - 31899

CONFIRM - http://bugzilla.gnome.org/show_bug.cgi?id=542643


Last Updated: 27 May 2016 10:48:07