CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
79.9%
Integer overflow in the vorbis_residue_decode_internal function in
libavcodec/vorbis_dec.c in the Vorbis decoder in FFmpeg, possibly 0.6, has
unspecified impact and remote attack vectors, related to the sizes of
certain integer data types. NOTE: this might overlap CVE-2011-0480.
Author | Note |
---|---|
mdeslaur | 0.5.x and 0.6.x don’t have affected code |