2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2007-4938" ,
"sourceIdentifier" : "cve@mitre.org" ,
"published" : "2007-09-18T19:17:00.000" ,
"lastModified" : "2018-10-15T21:38:55.550" ,
"vulnStatus" : "Modified" ,
"descriptions" : [
{
"lang" : "en" ,
"value" : "Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large \"indx truck size\" and nEntriesInuse values, and a certain wLongsPerEntry value."
} ,
{
"lang" : "es" ,
"value" : "Desbordamiento de b\u00fafer basado en pila en libmpdemux/aviheader.c en MPlayer 1.0rc1 y anteriores permite a atacantes remotos provocar denegaci\u00f3n de servicio (caida de aplicaci\u00f3n) o posiblemente ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un archivo .avi con cierto \"tama\u00f1o indx tratado\" y valores nEntriesInuse, y un cierto valor wLongsPerEntry."
}
] ,
"metrics" : {
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:N/AC:H/Au:N/C:C/I:C/A:C" ,
"accessVector" : "NETWORK" ,
"accessComplexity" : "HIGH" ,
"authentication" : "NONE" ,
"confidentialityImpact" : "COMPLETE" ,
"integrityImpact" : "COMPLETE" ,
"availabilityImpact" : "COMPLETE" ,
"baseScore" : 7.6
} ,
"baseSeverity" : "HIGH" ,
"exploitabilityScore" : 4.9 ,
"impactScore" : 10.0 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : true ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : true
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "CWE-119"
}
]
}
] ,
"configurations" : [
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0FF5999A-9D12-4CDD-8DE9-A89C10B2D574"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:hp:hp-ux:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "61A4F116-1FEE-450E-99AE-6AD9ACDDE570"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:hp:tru64:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1FE64F3F-48F6-493F-A81E-2B106FF73AC1"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:ibm:aix:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F7F01A55-7C37-4BAF-A4D4-61E8AC54FF79"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:ibm:os2:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "AD5511BD-2A41-4FF6-BD3F-9448F3F8AC90"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "155AD4FB-E527-4103-BCEF-801B653DEA37"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:mandrakesoft:mandrake_linux:2007:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "02362C25-B373-4FB1-AF4A-2AFC7F7D4387"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:mandrakesoft:mandrake_linux:2007:*:x86_64:*:*:*:*:*" ,
"matchCriteriaId" : "19AD5F8D-6EB9-4E4B-9E82-FFBAB68797E9"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "19D64247-F0A0-4984-84EA-B63FC901F002"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1:*:x86_64:*:*:*:*:*" ,
"matchCriteriaId" : "316AA6EB-7191-479E-99D5-40DA79E340E7"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "4E545C63-FE9C-4CA1-AF0F-D999D84D2AFD"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:microsoft:windows_2003_server:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "60EC86B8-5C8C-4873-B364-FB1F8EFE1CFF"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:microsoft:windows_98:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "AD1B68C0-2676-4F21-8EF0-1749103CB8C2"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:microsoft:windows_me:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "799DA395-C7F8-477C-8BC7-5B4B88FB7503"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E53CDA8E-50A8-4509-B070-CCA5604FFB21"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E61F1C9B-44AF-4B35-A7B2-948EEF7639BD"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:santa_cruz_operation:sco_unix:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "ECCBDA43-9C75-4B36-8C90-EF26B8CD777D"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:sun:solaris:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "469B74F2-4B89-42B8-8638-731E92D463B9"
} ,
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:o:windriver:bsdos:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "60ACA374-1434-4C02-8327-17BC9C000B65"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mplayer:mplayer:1.0_rc1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "83E84D8D-93DA-47C1-9282-E127CD1862E5"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:sgi:irix:*:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "056B3397-81A9-4128-9F49-ECEBE1743EE8"
}
]
}
]
}
] ,
"references" : [
2024-04-04 08:46:00 +00:00
{
"url" : "http://osvdb.org/45940" ,
"source" : "cve@mitre.org"
} ,
{
"url" : "http://secunia.com/advisories/27016" ,
"source" : "cve@mitre.org" ,
"tags" : [
"Vendor Advisory"
]
} ,
2023-04-24 12:24:31 +02:00
{
"url" : "http://securityreason.com/securityalert/3144" ,
"source" : "cve@mitre.org"
} ,
{
"url" : "http://www.mandriva.com/security/advisories?name=MDKSA-2007:192" ,
"source" : "cve@mitre.org"
} ,
{
"url" : "http://www.securityfocus.com/archive/1/479222/100/0/threaded" ,
"source" : "cve@mitre.org"
} ,
{
"url" : "http://www.securityfocus.com/bid/25648" ,
"source" : "cve@mitre.org" ,
"tags" : [
"Exploit"
]
} ,
{
"url" : "http://www.vulnhunt.com/advisories/CAL-20070912-1_Multiple_vendor_produce_handling_AVI_file_vulnerabilities.txt" ,
"source" : "cve@mitre.org" ,
"tags" : [
"Exploit"
]
} ,
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/36581" ,
"source" : "cve@mitre.org"
}
]
}
