CVE-2021-26567

Published: Feb 26, 2021

Modified: Sep 16, 2024

PUBLISHED

Description

Stack-based buffer overflow vulnerability in frontend/main.c in faad2 before 2.2.7.1 allow local attackers to execute arbitrary code via filename and pathname options.

Vendor	Product	Versions
github/knik0	faad2	affected `unspecified - < 2.2.7.1`

Weaknesses (CWE)

CWE-121

References

https://www.synology.com/security/advisory/Synology_SA_20_26

x_refsource_CONFIRM

https://github.com/knik0/faad2/commit/720f7004d6c4aabee19aad16e7c456ed76a3ebfa

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-26567

Description

Affected Products

Weaknesses (CWE)

References