The VC-1 decoding functionality in FFmpeg prior to 0.5.4, as used in MPlayer and other products, does not properly restrict read operations, which allows remote malicious users to have an unspecified impact via a crafted VC-1 file, a related issue to CVE-2011-0723.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ffmpeg ffmpeg 0.5 |
||
ffmpeg ffmpeg 0.3.4 |
||
ffmpeg ffmpeg 0.4.0 |
||
ffmpeg ffmpeg 0.5.2 |
||
ffmpeg ffmpeg 0.5.1 |
||
ffmpeg ffmpeg 0.3 |
||
ffmpeg ffmpeg 0.4.8 |
||
ffmpeg ffmpeg 0.4.5 |
||
ffmpeg ffmpeg 0.4.2 |
||
ffmpeg ffmpeg 0.3.1 |
||
ffmpeg ffmpeg 0.4.9 |
||
ffmpeg ffmpeg 0.3.2 |
||
ffmpeg ffmpeg 0.3.3 |
||
ffmpeg ffmpeg 0.4.4 |
||
ffmpeg ffmpeg 0.4.7 |
||
ffmpeg ffmpeg 0.4.6 |
||
ffmpeg ffmpeg 0.4.3 |
||
ffmpeg ffmpeg |
||
mplayerhq mplayer |