PT-2013-2167 · FFmpeg+1 · Ffmpeg+1

Published

2013-03-19

Updated

2013-03-21

CVE-2013-0224

CVSS v2.0

4.4

Medium

Vector

AV:L/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Drupal Video module versions 7.x-2.x before 7.x-2.9

Description The issue allows local users to execute arbitrary PHP code by modifying a temporary PHP file when the FFmpeg transcoder is used.

Recommendations For versions prior to 7.x-2.9, update to version 7.x-2.9 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2013-0224

Drupal Video Module

Ffmpeg