Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2012-6618

The av_probe_input_buffer function in libavformat/utils.c in FFmpeg before 1.0.2, when running with certain -probesize values, allows remote attackers to cause a denial of service (crash) via a crafted MP3 file, possibly related to frame size or lack of sufficient "frames to estimate rate."

  • Published: Dec 24, 2013
  • Updated: Apr 13, 2023
  • CVE: CVE-2012-6618
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 2.6
  • AV:N/AC:H/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
ffmpeg / ffmpeg 1.0 1.0.x
ffmpeg / ffmpeg - 1.0.1.x