Lucene search
MitreCVE-2004-1311HistoryJan 10, 2005 - 5:00 a.m.
CVE-2004-1311
2005-01-1005:00:00
mitre
web.nvd.nist.gov
28
cve-2004-1311
unix mplayer
real rtsp streaming
integer overflow
denial of service
buffer overflow
nvd
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
High
EPSS
0.041
Percentile
92.2%
Integer overflow in the real_setup_and_get_header function in real.c for Unix MPlayer 1.0pre5 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a Real RTSP streaming media file with a -1 content-length field, which leads to a heap-based buffer overflow.
Affected configurations
Node
mplayermplayerMatch1.0_pre5
Related
cvelist
cvelist
CVE-2004-1311
2004-12-22 05:00:00
debiancve
debiancve
CVE-2004-1311
2005-01-10 05:00:00
nvd
nvd
CVE-2004-1311
2005-01-10 05:00:00
nessus
nessus
Mandrake Linux Security Advisory : mplayer (MDKSA-2004:157)
2004-12-23 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
High
EPSS
0.041
Percentile
92.2%
Related for CVE-2004-1311