Published: 31/03/2008 Updated: 29/09/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Uncontrolled array index in the sdpplin_parse function in stream/realrtsp/sdpplin.c in MPlayer 1.0 rc2 allows remote malicious users to overwrite memory and execute arbitrary code via a large streamid SDP parameter. NOTE: this issue has been referred to as an integer overflow.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mplayer mplayer 1.0_rc2

It was discovered that the MPlayer movie player performs insufficient input sanitising on SDP session data, leading to potential execution of arbitrary code through a malformed multimedia stream For the stable distribution (etch), this problem has been fixed in version 10~rc1-12etch3 For the unstable distribution (sid), this problem has been fix ...

#!/usr/bin/perl # Huston, mplayer got some vulns! :( # CVE-2008-0073 also apply to mplayer and vlc with some distinctions # # Assuming kernelva_randomize=0 this overwrite EIP with a "stream" structure on my box # # The first element of the "stream" structure is a user-supplied buffer so it is not really useful to overwrite # EIP, let's find ...

CWE-189 http://secunia.com/advisories/29515 http://www.debian.org/security/2008/dsa-1552 http://secunia.com/advisories/29921 http://www.securityfocus.com/bid/28851 http://www.mandriva.com/security/advisories?name=MDVSA-2008:196 http://secunia.com/advisories/30412 http://security.gentoo.org/glsa/glsa-200805-22.xml http://www.vupen.com/english/advisories/2008/0997/references https://exchange.xforce.ibmcloud.com/vulnerabilities/41490 https://www.exploit-db.com/exploits/5307 https://nvd.nist.gov https://www.debian.org/security/./dsa-1552 https://www.exploit-db.com/exploits/5307/

CVE-2008-1558

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect