Computer Security

MPlayer multiple security vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



MPlayer multiple security vulnerabilities
Published:11.03.2008
Source:BUGTRAQ
SecurityVulns ID:8768
Type:client
Level:6/10
Description:Buffer overflows on URLs and CDDB entries parsing.
Affected:MPLAYER : MPlayer 1.0
CVE:CVE-2008-0630 (Buffer overflow in url.c in MPlayer 1.0rc2 and SVN before r25823 allows remote attackers to execute arbitrary code via a crafted URL that prevents the IPv6 parsing code from setting a pointer to NULL, which causes the buffer to be reused by the unescape code.)
 CVE-2008-0629 (Buffer overflow in stream_cddb.c in MPlayer 1.0rc2 and SVN before r25824 allows remote user-assisted attackers to execute arbitrary code via a CDDB database entry containing a long album title.)
Original documentdocumentGENTOO, [ GLSA 200803-16 ] MPlayer: Multiple buffer overflows (11.03.2008)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru