Multiple array index errors in the (1) get_intra_block, (2) get_inter_block_h263, and (3) get_inter_block_mpeg functions in src/bitstream/mbcoding.c in Xvid 1.1.2 allow remote malicious users to execute arbitrary code via a crafted (a) Avi, (b) H.263, or (c) MPEG file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xvid xvid 1.1.2 |