CVE-2008-4201

Published: Sep 24, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Heap-based buffer overflow in the decodeMP4file function (frontend/main.c) in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MPEG-4 (MP4) file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

GLSA-200811-03

vendor-advisory

x_refsource_GENTOO

[oss-security] 20080924 Re: CVE id request: fraud2

mailing-list

x_refsource_MLIST

ADV-2008-2601

vdb-entry

x_refsource_VUPEN

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499899

x_refsource_CONFIRM

32006

third-party-advisory

x_refsource_SECUNIA

http://www.audiocoding.com/patch/main_overflow.diff

x_refsource_CONFIRM

31219

vdb-entry

x_refsource_BID

http://bugs.gentoo.org/show_bug.cgi?id=238445

x_refsource_CONFIRM

http://www.audiocoding.com/archive.html

x_refsource_CONFIRM

http://bugs.gentoo.org/attachment.cgi?id=166174&action=view

x_refsource_MISC

32661

third-party-advisory

x_refsource_SECUNIA

48349

vdb-entry

x_refsource_OSVDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2008-4201

Description

Affected Products

References