CVE-2008-4610

NONE EPSS 94.8%
Published Oct 20, 200817y ago · Modified Jun 16, 20262w ago
Find Similar
Published Oct 20, 2008 17y ago
Last Modified Jun 16, 2026 2w ago

Description

MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated by lol-ffplay.ogm, different vectors than CVE-2007-6718.

Threat Intelligence

EPSS Exploit Probability
94.8% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-399

Affected Products 20

VendorProductVersionRange
mplayermplayer* ≤1.0_rc1
mplayermplayer0.90any
mplayermplayer0.90_preany
mplayermplayer0.90_rcany
mplayermplayer0.90_rc4any
mplayermplayer0.91any
mplayermplayer0.92any
mplayermplayer0.92.1any
mplayermplayer0.92_cvsany
mplayermplayer1.0_pre1any
mplayermplayer1.0_pre2any
mplayermplayer1.0_pre3any
mplayermplayer1.0_pre3try2any
mplayermplayer1.0_pre4any
mplayermplayer1.0_pre5any
mplayermplayer1.0_pre5try1any
mplayermplayer1.0_pre5try2any
mplayermplayer1.0_pre6any
mplayermplayer1.0_pre7any
mplayermplayer1.0_pre7try2any

References 3

  • secunia.com http://secunia.com/advisories/34296
  • openwall.com http://www.openwall.com/lists/oss-security/2008/10/07/1
  • ubuntu.com http://www.ubuntu.com/usn/USN-734-1

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.