CVE-2008-3827
Published Sep 29, 2008
Last updated 6 years ago
Overview
- Description
- Multiple integer underflows in the Real demuxer (demux_real.c) in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service (process termination) and possibly execute arbitrary code via a crafted video file that causes the stream_read function to read or write arbitrary memory.
- Source
- secalert@redhat.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-189
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:a:mplayer:mplayer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EED44566-2C43-48C4-BBFF-4FAFB64C96C7", "versionEndIncluding": "1.0_rc2" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:0.90:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2AD73BA0-D315-4ADA-A942-8DCC2A920B28" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:0.90_pre:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "710ACCE6-B3E3-474A-B78B-5A123EC24DE1" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:0.90_rc:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55D3C3E6-862E-470E-8CEA-4B333B906172" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:0.90_rc4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30D6A539-5523-4E52-854A-82CDCDBDFC45" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:0.91:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA841B0B-8FA9-45F9-9B60-7C9BD1A92E14" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:0.92:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91907AEA-D84F-4DD9-AD22-41E563182FC2" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:0.92.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D200DE0F-D8BB-460D-928E-E59473F84B38" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:0.92_cvs:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5103A1E1-670A-4527-9FB8-9D8B0DA506D9" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "500E5BD7-3F17-455F-8463-50B145128873" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3BE4C532-1756-4B2E-94EE-8F8253281F54" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E6875BE-67F1-4E0E-A610-7B6EDBAB6431" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre3try2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E74EBC5-296E-4B20-8BCB-F104D06595AD" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "29A09BDA-DA05-4512-9E39-14819C410CD1" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A5650520-0CCA-47C1-A7B8-8A6129BE6B83" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre5try1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD1FAB76-B1DB-400E-9224-09E82D9A8847" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre5try2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4D18950-F883-47D1-B95B-6F46F2F6F701" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "00928380-0E20-4678-98B7-18A634164F65" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A671EC1E-A917-4A9C-8254-7885FF612D54" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_pre7try2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "430103FB-6255-4581-A7DC-F218E5B86D4A" }, { "criteria": "cpe:2.3:a:mplayer:mplayer:1.0_rc1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83E84D8D-93DA-47C1-9282-E127CD1862E5" } ], "operator": "OR" } ] } ]