Lucene search
Ubuntu.comUB:CVE-2011-2161HistoryMay 20, 2011 - 12:00 a.m.
CVE-2011-2161
2011-05-2000:00:00
ubuntu.com
ubuntu.com
17
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
0.003
Percentile
68.9%
The ape_read_header function in ape.c in libavformat in FFmpeg before
0.5.4, as used in MPlayer, VideoLAN VLC media player, and other products,
allows remote attackers to cause a denial of service (application crash)
via an APE (aka Monkey’s Audio) file that contains a header but no frames.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | ffmpeg-extra in multiverse needs to have matching version PoC: http://packetstorm.linuxsecurity.com/1103-exploits/vlc105-dos.txt |
Related
prion
prion
Design/Logic Flaw
2011-05-20 22:55:00
nvd
nvd
CVE-2011-2161
2011-05-20 22:55:06
debiancve
debiancve
CVE-2011-2161
2011-05-20 22:55:06
cvelist
cvelist
CVE-2011-2161
2011-05-20 22:00:00
cve
cve
CVE-2011-2161
2011-05-20 22:55:06
ibm
ibm
ubuntu
ubuntu
FFmpeg vulnerabilities
2011-09-19 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1209-1)
2011-09-23 00:00:00
Ubuntu Update for ffmpeg USN-1209-1
2011-09-23 00:00:00
Debian: Security Advisory (DSA-2306-1)
2011-09-21 00:00:00
nessus
nessus
Ubuntu 10.04 LTS / 10.10 : ffmpeg vulnerabilities (USN-1209-1)
2011-09-20 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
0.003
Percentile
68.9%
Related for UB:CVE-2011-2161