Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Published: 17/12/2008 Updated: 11/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in the demux_open_vqf function in libmpdemux/demux_vqf.c in MPlayer 1.0 rc2 before r28150 allows remote malicious users to execute arbitrary code via a malformed TwinVQ file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mplayer mplayer 0.92
mplayer mplayer
mplayer mplayer 1.0 pre2
mplayer mplayer 0.90
mplayer mplayer 1.0 pre1
mplayer mplayer 0.90 rc
mplayer mplayer 1.0 pre5try2
mplayer mplayer 0.92.1
mplayer mplayer 1.0 pre3
mplayer mplayer 1.0 pre7try2
mplayer mplayer 0.92 cvs
mplayer mplayer 1.0 pre5
mplayer mplayer 0.91
mplayer mplayer 1.0 pre5try1
mplayer mplayer 1.0 pre3try2
mplayer mplayer 1.0 pre7
mplayer mplayer 1.0 pre6
mplayer mplayer 0.90 pre
mplayer mplayer 0.90 rc4
mplayer mplayer 1.0 pre4

CWE-119 http://trapkit.de/advisories/TKADV2008-014.txt http://secunia.com/advisories/33136 http://svn.mplayerhq.hu/mplayer/branches/1.0rc2/libmpdemux/demux_vqf.c?r1=24723&r2=28150&pathrev=28150 http://svn.mplayerhq.hu/mplayer/branches/1.0rc2/libmpdemux/demux_vqf.c?view=log&pathrev=28150#rev28150 http://www.securityfocus.com/bid/32822 http://www.mandriva.com/security/advisories?name=MDVSA-2009:014 http://www.mandriva.com/security/advisories?name=MDVSA-2009:013 http://www.debian.org/security/2009/dsa-1782 http://secunia.com/advisories/34845 http://www.securityfocus.com/archive/1/499214/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-5616

Vulnerability Summary

References

Vulmon Search

About

Products

Connect