CVE-2012-5360

Name of the Vulnerable Software and Affected Versions FFmpeg versions prior to 0.11

Description The issue is related to insufficient input validation in the Libavcodec library of FFmpeg, allowing remote attackers to execute arbitrary code via a crafted QT file. This can be exploited by an attacker to execute arbitrary code.

Recommendations For versions prior to 0.11, update to version 0.11 or later to resolve the issue. As a temporary workaround, consider restricting the use of Libavcodec library until a patch is applied. Avoid using the library to process untrusted QT files until the issue is resolved.