Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2007-4938

Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry value.

  • Published: Sep 18, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-4938
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.6
  • AV:N/AC:H/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
mplayer / mplayer 1.0_rc1 1.0_rc1.x
sgi / irix - -