10

CVE-2004-0386

Exploit
Buffer overflow in the HTTP parser for MPlayer 1.0pre3 and earlier, 0.90, and 0.91 allows remote attackers to execute arbitrary code via a long Location header.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MplayerMplayer Version0.90
MplayerMplayer Version0.90_pre
MplayerMplayer Version0.90_rc
MplayerMplayer Version0.91
MplayerMplayer Version1.0_pre1
MplayerMplayer Version1.0_pre2
MplayerMplayer Version1.0_pre3
GentooLinux Version0.5
GentooLinux Version0.7
GentooLinux Version1.1a
GentooLinux Version1.2
GentooLinux Version1.4
GentooLinux Version1.4 Updaterc1
GentooLinux Version1.4 Updaterc2
GentooLinux Version1.4 Updaterc3
MandrakesoftMandrake Linux Version9.2
MandrakesoftMandrake Linux Version10.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 26.98% 0.978
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.mplayerhq.hu/homepage/design6/news.html
http://marc.info/?l=bugtraq&m=108067020624076&w=2
http://secunia.com/advisories/11259
Patch
Vendor Advisory
http://security.gentoo.org/glsa/glsa-200403-13.xml
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/723910
Patch
Third Party Advisory
US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2004:026
http://www.securityfocus.com/archive/1/359025
Patch
Vendor Advisory
http://www.securityfocus.com/bid/10008
Patch
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/15675