Published: 22/01/2011 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

libavcodec/vorbis_dec.c in the Vorbis decoder in FFmpeg 0.6.1 and previous versions allows remote malicious users to cause a denial of service (application crash) via a crafted .ogg file, related to the vorbis_floor0_decode function. NOTE: this might overlap CVE-2011-0480.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ffmpeg ffmpeg 0.4.5
ffmpeg ffmpeg 0.3.2
ffmpeg ffmpeg 0.4.7
ffmpeg ffmpeg 0.3.3
ffmpeg ffmpeg 0.3
ffmpeg ffmpeg 0.4.2
ffmpeg ffmpeg 0.5
ffmpeg ffmpeg
ffmpeg ffmpeg 0.3.1
ffmpeg ffmpeg 0.4.9
ffmpeg ffmpeg 0.6
ffmpeg ffmpeg 0.4.4
ffmpeg ffmpeg 0.4.6
ffmpeg ffmpeg 0.3.4
ffmpeg ffmpeg 0.4.0
ffmpeg ffmpeg 0.4.8
ffmpeg ffmpeg 0.4.3

FFmpeg could be made to run programs as your login if it opened a specially crafted file ...

Debian Bug report logs - #611495 [CVE-2010-4705] [CVE-2010-4704] integer overflow in Vorbis decoder Package: ffmpeg; Maintainer for ffmpeg is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Source for ffmpeg is src:ffmpeg (PTS, buildd, popcon) Reported by: Luciano Bello <luciano@debianorg> Date: ...

Debian Bug report logs - #628448 several vulnerabilities: CVE-2011-2162 CVE-2011-2161 CVE-2011-2160 Package: libav; Maintainer for libav is Debian Multimedia Maintainers <pkg-multimedia-maintainers@listsaliothdebianorg>; Reported by: Steffen Joeris <white@debianorg> Date: Sun, 29 May 2011 03:27:01 UTC Severity: g ...

Several vulnerabilities have been discovered in FFmpeg coders, which are used by MPlayer and other applications CVE-2010-3429 Cesar Bernardini and Felipe Andres Manzano reported an arbitrary offset dereference vulnerability in the libavcodec, in particular in the FLIC file format parser A specific FLIC file may exploit this vulnerability a ...

CWE-20 https://roundup.ffmpeg.org/issue2322 http://www.debian.org/security/2011/dsa-2165 http://secunia.com/advisories/43323 http://www.vupen.com/english/advisories/2011/1241 http://www.mandriva.com/security/advisories?name=MDVSA-2011:060 http://www.mandriva.com/security/advisories?name=MDVSA-2011:061 http://ffmpeg.mplayerhq.hu/http://www.ubuntu.com/usn/usn-1104-1/http://www.mandriva.com/security/advisories?name=MDVSA-2011:062 http://www.securityfocus.com/bid/46294 http://www.mandriva.com/security/advisories?name=MDVSA-2011:088 http://www.mandriva.com/security/advisories?name=MDVSA-2011:089 http://www.debian.org/security/2011/dsa-2306 http://www.mandriva.com/security/advisories?name=MDVSA-2011:112 http://www.mandriva.com/security/advisories?name=MDVSA-2011:114 http://git.ffmpeg.org/?p=ffmpeg.git%3Ba=commit%3Bh=3dde66752d59dfdd0f3727efd66e7202b3c75078 https://usn.ubuntu.com/1104-1/https://nvd.nist.gov

CVE-2010-4704

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect