|
|
|
|
| |
| "MPlayer is a movie player which runs on many systems (see the documentation). It plays most MPEG/VOB, AVI, Ogg/OGM, VIVO, ASF/WMA/WMV, QT/MOV/MP4, RealMedia, Matroska, NUT, NuppelVideo, FLI, YUV4MPEG, FILM, RoQ, PVA files, supported by many native, XAnim, and Win32 DLL codecs. You can watch VideoCD, SVCD, DVD, 3ivx, DivX 3/4/5 and even WMV movies.." Two vulnerabilities have been discovered in MPlayer which allow attackers to cause it to crash by tricking MPlayer into accessing a malformed IPv6 addresses or by responding to it with an arbitrary long CDDB entry. |
| |
Credit:
The information has been provided by Mu Security.
The original article can be found at: http://labs.musecurity.com/advisories/MU-200802-01.txt
|
| |
Vulnerable Systems:
* MPlayer 1.0rc2 and SVN before r25824
Immune Systems:
* MPlayer 1.0rc2 and SVN after Sun Jan 20 20:43:46 2008 UTC
URL IPv6 Address Parsing Remote Heap Overflow:
A heap overflow condition exists in the parsing of IPv6 addresses, allowing for arbitrary code execution.
CDDB Remote Stack Overflow:
A remote attacker may execute arbitrary code on a client machine by causing a specially crafted CDDB response to be sent to the client.
|
|
|
|
|
|
|
|
|
|
