Launchpad CVE tracker

CVE 2007-4938

Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry value.

Related bugs and status

CVE-2007-4938 (Candidate) is related to these bugs:

Bug #140891: [mplayer] Heap overflow causes potential arbitrary code execution

		In	Importance	Status
140891	[mplayer] Heap overflow causes potential arbitrary code execution	mplayer (Ubuntu)	Medium	Fix Released
140891	[mplayer] Heap overflow causes potential arbitrary code execution	kmplayer (Ubuntu)	Undecided	Invalid
140891	[mplayer] Heap overflow causes potential arbitrary code execution	kmplayer (Ubuntu Dapper)	Undecided	Invalid
140891	[mplayer] Heap overflow causes potential arbitrary code execution	mplayer (Ubuntu Dapper)	Medium	Invalid
140891	[mplayer] Heap overflow causes potential arbitrary code execution	kmplayer (Ubuntu Edgy)	Undecided	Invalid
140891	[mplayer] Heap overflow causes potential arbitrary code execution	mplayer (Ubuntu Edgy)	Medium	Fix Released
140891	[mplayer] Heap overflow causes potential arbitrary code execution	kmplayer (Ubuntu Gutsy)	Undecided	Invalid
140891	[mplayer] Heap overflow causes potential arbitrary code execution	mplayer (Ubuntu Gutsy)	Medium	Fix Released
140891	[mplayer] Heap overflow causes potential arbitrary code execution	kmplayer (Ubuntu Feisty)	Undecided	Invalid
140891	[mplayer] Heap overflow causes potential arbitrary code execution	mplayer (Ubuntu Feisty)	Medium	Fix Released
140891	[mplayer] Heap overflow causes potential arbitrary code execution	kmplayer (Ubuntu Hardy)	Undecided	Invalid
140891	[mplayer] Heap overflow causes potential arbitrary code execution	mplayer (Ubuntu Hardy)	Medium	Fix Released
140891	[mplayer] Heap overflow causes potential arbitrary code execution	mplayer (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.vulnhunt.co...
BID: 25648
SECUNIA: 27016
MANDRIVA: MDKSA-2007:192
SREASON: 3144
OSVDB: 45940
XF: mplayer-avi-file-bo(36...
BUGTRAQ: 20070912 CAL-20070912-...

Launchpad.net

CVE 2007-4938

Related bugs and status

Related bugs

References