ID CVE-2006-0579
Summary Multiple integer overflows in (1) the new_demux_packet function in demuxer.h and (2) the demux_asf_read_packet function in demux_asf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. NOTE: the provenance of this information is unknown; portions of the details are obtained from third party information.
References
Vulnerable Configurations
  • cpe:2.3:a:mplayer:mplayer:*:*:*:*:*:*:*:*
    cpe:2.3:a:mplayer:mplayer:*:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 20-07-2017 - 01:29)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
gentoo GLSA-200603-03
mandriva MDKSA-2006:048
secunia
  • 18718
  • 19114
vupen ADV-2006-0457
xf mplayer-asf-integer-overflow(24531)
Last major update 20-07-2017 - 01:29
Published 08-02-2006 - 01:02
Last modified 20-07-2017 - 01:29
Back to Top