CVE-2007-4938
NONE EPSS 96.5%
Published Sep 18, 200718y ago · Modified Jun 16, 20262w ago
Published Sep 18, 2007 18y ago
Last Modified Jun 16, 2026 2w ago
Description
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry value.
Threat Intelligence
EPSS Exploit Probability
96.5% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available
Weaknesses 1
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety
Affected Products 21
| Vendor | Product | Version | Range |
|---|---|---|---|
| apple | mac_os_x | * | any |
| hp | hp-ux | * | any |
| hp | tru64 | * | any |
| ibm | aix | * | any |
| ibm | os2 | * | any |
| linux | linux_kernel | * | any |
| mandrakesoft | mandrake_linux | 2007 | any |
| mandrakesoft | mandrake_linux | 2007 | any |
| mandrakesoft | mandrake_linux | 2007.1 | any |
| mandrakesoft | mandrake_linux | 2007.1 | any |
| microsoft | windows_2000 | * | any |
| microsoft | windows_2003_server | * | any |
| microsoft | windows_98 | * | any |
| microsoft | windows_me | * | any |
| microsoft | windows_nt | 4.0 | any |
| microsoft | windows_xp | * | any |
| santa_cruz_operation | sco_unix | * | any |
| sun | solaris | * | any |
| windriver | bsdos | * | any |
| mplayer | mplayer | 1.0_rc1 | any |
| sgi | irix | * | any |
References 8
- osvdb.org http://osvdb.org/45940
- secunia.com http://secunia.com/advisories/27016
- securityreason.com http://securityreason.com/securityalert/3144
- mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2007:192
- securityfocus.com http://www.securityfocus.com/archive/1/479222/100/0/threaded
- securityfocus.com http://www.securityfocus.com/bid/25648
- vulnhunt.com http://www.vulnhunt.com/advisories/CAL-20070912-1_Multiple_vendor_produce_handling_AVI_file_vulnerabilities.txt
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/36581
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.