mplayer
Page content
- Author: Miklos Vajna
- Vulnerable: 1.0rc2-7solaria1
- Unaffected: 1.0rc2-7solaria2
Tobias Klein has reported a vulnerability in MPlayer, which potentially can be exploited by malicious people to compromise a user’s system. The vulnerability is caused due to a boundary error within the “demux_open_vqf()” function in libmpdemux/demux_vqf.c. This can be exploited to cause a stack-based buffer overflow via a specially crafted TwinVQ file. Successful exploitation may allow execution of arbitrary code.
- Bug Tracker URL: http://bugs.frugalware.org/task/3524