PT-2013-6243 · FFmpeg · Ffmpeg
Ami_Stuff
·
Publicado
2013-12-09
·
Atualizado
2016-12-03
·
CVE-2013-7023
CVSS v2.0
6.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
FFmpeg versions prior to 2.1
Description
The issue is related to the
ff combine frame function in libavcodec/parser.c, which does not properly handle certain memory-allocation errors. This can be exploited by remote attackers using crafted data, potentially leading to a denial of service due to out-of-bounds array access or other unspecified impacts.Recommendations
For versions prior to 2.1, update to version 2.1 or later to resolve the issue.
Exploit
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ffmpeg