ID CVE-2008-4868
Summary Unspecified vulnerability in the avcodec_close function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random pointers."
References
Vulnerable Configurations
  • cpe:2.3:a:ffmpeg:ffmpeg:0.3:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.3.3:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.3.3:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.3.4:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.3.4:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.4.6:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.4.7:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.4.7:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.4.8:*:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.4.8:*:*:*:*:*:*:*
  • cpe:2.3:a:ffmpeg:ffmpeg:0.4.9:pre1:*:*:*:*:*:*
    cpe:2.3:a:ffmpeg:ffmpeg:0.4.9:pre1:*:*:*:*:*:*
  • cpe:2.3:a:mplayer:mplayer:*:*:*:*:*:*:*:*
    cpe:2.3:a:mplayer:mplayer:*:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 08-08-2017 - 01:32)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
fulldisc 20080905 [PLSA 2008-36] Ffmpeg: Multiple vulnerabilities
gentoo GLSA-200903-33
mlist
  • [ffmpeg-cvslog] 20080816 r14787 - trunk/libavcodec/utils.c
  • [oss-security] 20081029 Fwd: [Full-disclosure] [PLSA 2008-36] Ffmpeg: Multiple vulnerabilities
secunia 34385
xf ffmpeg-avcodecclose-unspecified(46325)
Last major update 08-08-2017 - 01:32
Published 01-11-2008 - 00:00
Last modified 08-08-2017 - 01:32
Back to Top