Lucene search
HistoryJun 10, 2013 - 3:19 a.m.
CVE-2013-3672
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
High
EPSS
0.004
Percentile
74.0%
The mm_decode_inter function in mmvideo.c in libavcodec in FFmpeg before 1.2.1 does not validate the relationship between a horizontal coordinate and a width value, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted American Laser Games (ALG) MM Video data.
Affected configurations
Node
ffmpegffmpegRange≤1.2
Related
prion
prion
Out-of-bounds
2013-06-10 03:19:00
cvelist
cvelist
CVE-2013-3672
2013-06-10 01:00:00
debiancve
debiancve
CVE-2013-3672
2013-06-10 03:19:54
cve
cve
CVE-2013-3672
2013-06-10 03:19:54
ubuntucve
ubuntucve
CVE-2013-3672
2013-06-10 00:00:00
mageia
mageia
Updated ffmpeg packages fix several security vulnerabilities
2013-06-26 22:09:19
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0182)
2022-01-28 00:00:00
Gentoo Security Advisory GLSA 201502-08
2015-09-29 00:00:00
Debian Security Advisory DSA 3003-1 (libav - security update)
2014-08-10 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : ffmpeg (MDVSA-2014:227)
2014-11-26 00:00:00
GLSA-201502-08 : Libav: Multiple vulnerabilities
2015-02-09 00:00:00
Debian DSA-3003-1 : libav - security update
2014-08-12 00:00:00
osv
osv
libav - security update
2014-08-10 00:00:00
gentoo
gentoo
Libav: Multiple vulnerabilities
2015-02-07 00:00:00
FFmpeg: Multiple vulnerabilities
2013-10-25 00:00:00
debian
debian
[SECURITY] [DSA 3003-1] libav security update
2014-08-10 21:28:40
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
High
EPSS
0.004
Percentile
74.0%
Related for NVD:CVE-2013-3672