Multiple heap-based buffer overflows in Libextractor 0.5.13 and previous versions allow remote malicious users to execute arbitrary code via (1) the asf_read_header function in the ASF plugin (plugins/asfextractor.c), and (2) the parse_trak_atom function in the QT plugin (plugins/qtextractor.c).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libextractor libextractor 0.5.13 |