Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0398

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2009-0398
Last Modified 21 Aug 2010 01:30:16
Published 03 Feb 2009 06:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0398

Summary

Array index error in the gst_qtp_trak_handler function in gst/qtdemux/qtdemux.c in GStreamer Plug-ins (aka gstreamer-plugins) 0.6.0 allows remote attackers to have an unknown impact via a crafted QuickTime media file.

Vulnerable Systems

Application

  • Gstreamer Plug-ins 0.6.0


References

REDHAT - RHSA-2009:0269

MLIST - [oss-security] 20090129 CVE Request -- (sort of urgent) gstreamer-plugins-good (repost) (more details about affected versions -- final version)

SECUNIA - 33830


Last Updated: 27 May 2016 10:50:14