CVE-2007-4938
Published: 18 September 2007
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry value.
Notes
Author | Note |
---|---|
jdstrand | fix in MDKSA-2007:192 |