CVE-2004-0386

Published May 4, 2004

Last updated 7 years ago

CVSS info 10.0

Overview

Description: Buffer overflow in the HTTP parser for MPlayer 1.0pre3 and earlier, 0.90, and 0.91 allows remote attackers to execute arbitrary code via a long Location header.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mplayer:mplayer:0.90:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2AD73BA0-D315-4ADA-A942-8DCC2A920B28"
          },
          {
            "criteria": "cpe:2.3:a:mplayer:mplayer:0.90_pre:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "710ACCE6-B3E3-474A-B78B-5A123EC24DE1"
          },
          {
            "criteria": "cpe:2.3:a:mplayer:mplayer:0.90_rc:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "55D3C3E6-862E-470E-8CEA-4B333B906172"
          },
          {
            "criteria": "cpe:2.3:a:mplayer:mplayer:0.91:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA841B0B-8FA9-45F9-9B60-7C9BD1A92E14"
          },
          {
            "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "500E5BD7-3F17-455F-8463-50B145128873"
          },
          {
            "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BE4C532-1756-4B2E-94EE-8F8253281F54"
          },
          {
            "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E6875BE-67F1-4E0E-A610-7B6EDBAB6431"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:gentoo:linux:0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "980553F2-8662-47CF-95F0-645141746AEA"
          },
          {
            "criteria": "cpe:2.3:o:gentoo:linux:0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40EBF1CD-B392-4262-8F06-2C784ADAF0F0"
          },
          {
            "criteria": "cpe:2.3:o:gentoo:linux:1.1a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C00F84A-FCD4-4935-B7DE-ECBA6AE9B074"
          },
          {
            "criteria": "cpe:2.3:o:gentoo:linux:1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "960DC6C2-B285-41D4-96F7-ED97F8BD5482"
          },
          {
            "criteria": "cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65ED9D8C-604D-4B0B-A192-C0DA4D2E9AEB"
          },
          {
            "criteria": "cpe:2.3:o:gentoo:linux:1.4:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1FD0EB4-E744-4465-AFEE-A3C807C9C993"
          },
          {
            "criteria": "cpe:2.3:o:gentoo:linux:1.4:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D866A7D-F0B9-4EA3-93C6-1E7C2C2A861F"
          },
          {
            "criteria": "cpe:2.3:o:gentoo:linux:1.4:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57772E3B-893C-408A-AA3B-78C972ED4D5E"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:9.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4177C378-7729-46AB-B49B-C6DAED3200E7"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A06E5CD0-8BEC-4F4C-9E11-1FEE0563946C"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References