Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mplayer mplayer 1.0 rc1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2948
Multiple stack-based buffer overflows in stream/stream_cddb.c in MPlayer prior to 1.0rc1try3 allow remote malicious users to execute arbitrary code via a CDDB entry with a long (1) album title or (2) category.
Mplayer Mplayer 1.0 Rc1
NA
CVE-2008-3827
Multiple integer underflows in the Real demuxer (demux_real.c) in MPlayer 1.0_rc2 and previous versions allow remote malicious users to cause a denial of service (process termination) and possibly execute arbitrary code via a crafted video file that causes the stream_read functio...
Mplayer Mplayer 0.92
Mplayer Mplayer 1.0 Pre2
Mplayer Mplayer 0.90
Mplayer Mplayer 1.0 Pre1
Mplayer Mplayer 0.90 Rc
Mplayer Mplayer 1.0 Pre5try2
Mplayer Mplayer 1.0 Rc1
Mplayer Mplayer 0.92.1
Mplayer Mplayer 1.0 Pre3
Mplayer Mplayer 1.0 Pre7try2
Mplayer Mplayer 0.92 Cvs
Mplayer Mplayer 1.0 Pre5
Mplayer Mplayer 0.91
Mplayer Mplayer 1.0 Pre5try1
Mplayer Mplayer 1.0 Pre3try2
Mplayer Mplayer 1.0 Pre7
Mplayer Mplayer 1.0 Pre6
Mplayer Mplayer
Mplayer Mplayer 0.90 Pre
Mplayer Mplayer 0.90 Rc4
Mplayer Mplayer 1.0 Pre4
NA
CVE-2007-4938
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and previous versions allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntri...
Mplayer Mplayer 1.0 Rc1
Sgi Irix
1 EDB exploit
NA
CVE-2008-1558
Uncontrolled array index in the sdpplin_parse function in stream/realrtsp/sdpplin.c in MPlayer 1.0 rc2 allows remote malicious users to overwrite memory and execute arbitrary code via a large streamid SDP parameter. NOTE: this issue has been referred to as an integer overflow.
Mplayer Mplayer 1.0 Rc2
1 EDB exploit
NA
CVE-2004-1187
Heap-based buffer overflow in the pnm_get_chunk function for xine 0.99.2, and other packages such as MPlayer that use the same code, allows remote malicious users to execute arbitrary code via long PNA_TAG values, a different vulnerability than CVE-2004-1188.
Xine Xine 1 Rc6a
Xine Xine 1 Beta9
Mplayer Mplayer 0.92
Xine Xine 0.9.18
Xine Xine 1 Beta3
Xine Xine 1 Rc0a
Xine Xine-lib 1 Beta7
Mplayer Mplayer 1.0 Pre2
Mplayer Mplayer 0.90
Xine Xine 1 Rc7
Mplayer Mplayer 1.0 Pre1
Mplayer Mplayer 0.90 Rc
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc4
Xine Xine-lib 1 Beta9
Mplayer Mplayer 1.0 Pre5try2
Xine Xine 1 Alpha
Xine Xine-lib 1 Rc3b
Xine Xine-lib 1 Alpha
Xine Xine 1 Beta4
Mplayer Mplayer Head Cvs
Mplayer Mplayer 0.92.1
NA
CVE-2004-1188
The pnm_get_chunk function in xine 0.99.2 and previous versions, and other packages such as MPlayer that use the same code, does not properly verify that the chunk size is less than the PREAMBLE_SIZE, which causes a read operation with a negative length that leads to a buffer ove...
Xine Xine 1 Rc6a
Xine Xine 1 Beta9
Mplayer Mplayer 0.92
Xine Xine 0.9.18
Xine Xine 1 Beta3
Xine Xine 1 Rc0a
Xine Xine-lib 1 Beta7
Mplayer Mplayer 1.0 Pre2
Mplayer Mplayer 0.90
Xine Xine 1 Rc7
Mplayer Mplayer 1.0 Pre1
Mplayer Mplayer 0.90 Rc
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc4
Xine Xine-lib 1 Beta9
Mplayer Mplayer 1.0 Pre5try2
Xine Xine 1 Alpha
Xine Xine-lib 1 Rc3b
Xine Xine-lib 1 Alpha
Xine Xine 1 Beta4
Mplayer Mplayer Head Cvs
Mplayer Mplayer 0.92.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started