CVE-2007-2948

EPSS 13.2%

mplayer

Published: 6/7/2007Modified: 4/28/2026

Description

Multiple stack-based buffer overflows in stream/stream_cddb.c in MPlayer before 1.0rc1try3 allow remote attackers to execute arbitrary code via a CDDB entry with a long (1) album title or (2) category.

Affected packages (2)

Debian/mplayerfrom 0, < 1.0~rc1-14
Debian/mplayerfrom 0, < 1.0~rc1-12etch1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-2948