Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mplayer vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2007-2948
Multiple stack-based buffer overflows in stream/stream_cddb.c in MPlayer prior to 1.0rc1try3 allow remote malicious users to execute arbitrary code via a CDDB entry with a long (1) album title or (2) category.
Mplayer Mplayer 1.0 Rc1
10
CVSSv2
CVE-2004-1309
Heap-based buffer overflow in the demux_open_bmp function in demux_bmp.c for Unix MPlayer 1.0pre5 allows remote malicious users to execute arbitrary code via a bitmap (BMP) file containing a large biClrUsed field.
Mplayer Unix Mplayer 1.0 Pre5
7.6
CVSSv2
CVE-2007-4938
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and previous versions allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntri...
Mplayer Mplayer 1.0 Rc1
Sgi Irix
1 EDB exploit
10
CVSSv2
CVE-2004-1188
The pnm_get_chunk function in xine 0.99.2 and previous versions, and other packages such as MPlayer that use the same code, does not properly verify that the chunk size is less than the PREAMBLE_SIZE, which causes a read operation with a negative length that leads to a buffer ove...
Mplayer Mplayer 0.92
Mplayer Mplayer 0.92.1
Mplayer Mplayer 1.0 Pre5
Mplayer Mplayer 1.0 Pre5try1
Xine Xine-lib 1 Beta1
Xine Xine-lib 1 Beta10
Xine Xine-lib 1 Beta7
Xine Xine-lib 1 Beta8
Xine Xine-lib 1 Rc3b
Xine Xine-lib 1 Rc3c
Xine Xine 0.9.18
Xine Xine 0.9.8
Xine Xine 1 Beta4
Xine Xine 1 Beta5
Xine Xine 1 Rc1
Xine Xine 1 Rc2
Xine Xine 1 Rc6a
Xine Xine 1 Rc7
Mplayer Mplayer 0.90
Mplayer Mplayer 0.90 Pre
Mplayer Mplayer 1.0 Pre2
Mplayer Mplayer 1.0 Pre3
10
CVSSv2
CVE-2004-1187
Heap-based buffer overflow in the pnm_get_chunk function for xine 0.99.2, and other packages such as MPlayer that use the same code, allows remote malicious users to execute arbitrary code via long PNA_TAG values, a different vulnerability than CVE-2004-1188.
Mplayer Mplayer 0.90 Pre
Mplayer Mplayer 0.90 Rc
Mplayer Mplayer 1.0 Pre2
Mplayer Mplayer 1.0 Pre3
Xine Xine-lib 0.9.8
Xine Xine-lib 0.99
Xine Xine-lib 1 Beta3
Xine Xine-lib 1 Beta4
Xine Xine-lib 1 Rc1
Xine Xine-lib 1 Rc2
Xine Xine-lib 1 Rc6a
Xine Xine-lib 1 Rc7
Xine Xine 1 Beta11
Xine Xine 1 Beta12
Xine Xine 1 Beta8
Xine Xine 1 Beta9
Xine Xine 1 Rc0
Xine Xine 1 Rc4
Xine Xine 1 Rc5
Mplayer Mplayer 0.90
Mplayer Mplayer 0.92 Cvs
Mplayer Mplayer 1.0 Pre1
7.5
CVSSv2
CVE-2008-0486
Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote malicious users to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow.
Mplayer Mplayer 1.02rc2
Xine Xine-lib 1.1.10
7.5
CVSSv2
CVE-2006-6172
Buffer overflow in the asmrp_eval function in the RealMedia RTSP stream handler (asmrp.c) for Real Media input plugin, as used in (1) xine/xine-lib, (2) MPlayer 1.0rc1 and previous versions, and possibly others, allows remote malicious users to cause a denial of service and possi...
Xine Real Media Input Plugin
Mplayer Mplayer
6.8
CVSSv2
CVE-2011-0723
FFmpeg 0.5.x, as used in MPlayer and other products, allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed VC-1 file.
Ffmpeg Ffmpeg 0.5.2
Ffmpeg Ffmpeg 0.5.3
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.5.1
Mplayer Mplayer
4.3
CVSSv2
CVE-2022-32317
The MPlayer Project v1.5 exists to contain a heap use-after-free resulting in a double free in the preinit function at libvo/vo_v4l2.c. This vulnerability can lead to a Denial of Service (DoS) via a crafted file. The device=strdup statement is not executed on every call. Note: Th...
Mplayerhq Mplayer 1.5
NA
CVE-2022-38600
Mplayer SVN-r38374-13.0.1 is vulnerable to Memory Leak via vf.c and vf_vo.c.
Mplayerhq Mplayer Svn-r38374-13.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »