CVE-2007-4938
Description
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry value.
Related CPE's
References
Exploit
Exploit
Vendor Advisory
CvssV3 impact
Could not find any metrics
CvssV2 impact
Version | 2.0 |
VectorString | AV:N/AC:H/Au:N/C:C/I:C/A:C |
AccessVector | NETWORK |
AccessComplexity | HIGH |
Authentication | NONE |
ConfidentialityImpact | COMPLETE |
IntegrityImpact | COMPLETE |
AvailabilityImpact | COMPLETE |
BaseScore | 7.599999904632568 |