CVE-2007-2948

Published: Jun 7, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple stack-based buffer overflows in stream/stream_cddb.c in MPlayer before 1.0rc1try3 allow remote attackers to execute arbitrary code via a CDDB entry with a long (1) album title or (2) category.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

mplayer-cddb-bo(34749)

vdb-entry

x_refsource_XF

26083

third-party-advisory

x_refsource_SECUNIA

MDKSA-2007:143

vendor-advisory

x_refsource_MANDRIVA

http://www.mplayerhq.hu/design7/news.html

x_refsource_CONFIRM

24302

third-party-advisory

x_refsource_SECUNIA

GLSA-200707-07

vendor-advisory

x_refsource_GENTOO

http://secunia.com/secunia_research/2007-55/

x_refsource_MISC

SUSE-SR:2007:014

vendor-advisory

x_refsource_SUSE

36991

vdb-entry

x_refsource_OSVDB

ADV-2007-2080

vdb-entry

x_refsource_VUPEN

[MPlayer-announce] 20070605 MPlayer 1.0rc1try3 released

mailing-list

x_refsource_MLIST

24339

vdb-entry

x_refsource_BID

25940

third-party-advisory

x_refsource_SECUNIA

25713

third-party-advisory

x_refsource_SECUNIA

http://svn.mplayerhq.hu/mplayer/trunk/stream/stream_cddb.c?r1=23287&r2=23470&diff_format=u

x_refsource_CONFIRM

DSA-1313

vendor-advisory

x_refsource_DEBIAN

26207

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-2948

Description

Affected Products

References