9.3
CVSSv2

CVE-2013-0863

Published: 23/11/2013 Updated: 03/12/2016
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

Buffer overflow in the rle_decode function in libavcodec/sanm.c in FFmpeg prior to 1.0.4 and 1.1.x prior to 1.1.2 allows remote attackers to have an unspecified impact via crafted LucasArts Smush video data.

Affected Products

Vendor Product Versions
FfmpegFfmpeg0.3, 0.3.1, 0.3.2, 0.3.3, 0.3.4, 0.4.0, 0.4.2, 0.4.3, 0.4.4, 0.4.5, 0.4.6, 0.4.7, 0.4.8, 0.4.9, 0.5, 0.5.1, 0.5.2, 0.5.3, 0.5.4, 0.5.4.5, 0.5.4.6, 0.6, 0.6.1, 0.6.2, 0.6.3, 0.7, 0.7.1, 0.7.2, 0.7.3, 0.7.4, 0.7.5, 0.7.6, 0.7.7, 0.7.8, 0.7.9, 0.7.11, 0.7.12, 0.8.0, 0.8.1, 0.8.2, 0.8.5, 0.8.5.3, 0.8.5.4, 0.8.6, 0.8.7, 0.8.8, 0.8.10, 0.8.11, 0.9, 0.9.1, 0.10, 0.10.3, 0.10.4, 0.11, 1.0, 1.0.1, 1.0.2, 1.0.3, 1.1.1