CVE-2008-0630
EPSS 7.4%Published: 2/6/2008Modified: 4/28/2026
Description
Buffer overflow in url.c in MPlayer 1.0rc2 and SVN before r25823 allows remote attackers to execute arbitrary code via a crafted URL that prevents the IPv6 parsing code from setting a pointer to NULL, which causes the buffer to be reused by the unescape code.
Affected packages (1)
- Debian/mplayerfrom 0, < 1.0~rc2-8