CVE-2007-4938

EPSS 10.3%

mplayer - denial of service via crafted .avi file

發布日:2007/9/18修改日:2026/4/28

描述

Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry value.

受影響套件(2)

參考連結(1)