Off-by-one error in the VP3 decoder (vp3.c) in FFmpeg 0.5 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted VP3 file that triggers an out-of-bounds read and possibly memory corruption.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ffmpeg ffmpeg 0.5 |