Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2006-0579

Multiple integer overflows in (1) the new_demux_packet function in demuxer.h and (2) the demux_asf_read_packet function in demux_asf.c in MPlayer 1.0pre7try2 and earlier allow remote attackers to execute arbitrary code via an ASF file with a large packet length value. NOTE: the provenance of this information is unknown; portions of the details are obtained from third party information.

Related bugs and status

CVE-2006-0579 (Candidate) is related to these bugs:

Bug #33726: security issue in mplayer cvs prior Sun Feb 12 09:28:09 2006 UTC

Summary				In	Importance	Status
	33726	security issue in mplayer cvs prior Sun Feb 12 09:28:09 2006 UTC		mplayer (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

SECUNIA: 18718
GENTOO: GLSA-200603-03
SECUNIA: 19114
MANDRIVA: MDKSA-2006:048
VUPEN: ADV-2006-0457
XF: mplayer-asf-integer-ov...