PT-2013-2654 · FFmpeg · Ffmpeg

Publicado

2013-12-07

·

Atualizado

2024-06-15

·

CVE-2013-0851

CVSS v2.0

9.3

Alta

VetorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions FFmpeg versions prior to 1.1
Description The issue is related to the decode frame function in libavcodec/eamad.c, which can be exploited by remote attackers through crafted Electronic Arts Madcow video data. This exploitation triggers an out-of-bounds array access, potentially leading to an unspecified impact.
Recommendations For versions prior to 1.1, update to version 1.1 or later to resolve the issue.

Exploit

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2013-0851
DSA-3003-1
OPENSUSE-SU-2024:10926-1

Produtos afetados

Ffmpeg