CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
76.5%
Multiple buffer overflows in the get_qcx function in the J2K decoder
(j2kdec.c) in libavcode in FFmpeg before 0.9.1 allow remote attackers to
cause a denial of service (application crash) via unspecified vectors.
Author | Note |
---|---|
jdstrand | experimental code |
mdeslaur | code not present in libav and ffmpeg 0.5.x |