CVE-2006-0579

2006-02-0800:00:00

ubuntu.com

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.146

Percentile

95.8%

JSON

Multiple integer overflows in (1) the new_demux_packet function in
demuxer.h and (2) the demux_asf_read_packet function in demux_asf.c in
MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary
code via an ASF file with a large packet length value. NOTE: the provenance
of this information is unknown; portions of the details are obtained from
third party information.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchmplayer< 0.99+1.0pre7try2+cvs20060117-0ubuntu8UNKNOWN
ubuntu6.10noarchmplayer< 0.99+1.0pre7try2+cvs20060117-0ubuntu8UNKNOWN
ubuntu7.04noarchmplayer< 1.0~rc1-0ubuntu9.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.06	noarch	mplayer	< 0.99+1.0pre7try2+cvs20060117-0ubuntu8	UNKNOWN
ubuntu	6.10	noarch	mplayer	< 0.99+1.0pre7try2+cvs20060117-0ubuntu8	UNKNOWN
ubuntu	7.04	noarch	mplayer	< 1.0~rc1-0ubuntu9.1	UNKNOWN