Ffmpeg

Ffmpeg

495 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.7%
  • Veröffentlicht 20.05.2011 22:55:05
  • Zuletzt bearbeitet 16.06.2026 23:30:49

The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does not properly restrict read operations, which allows remote attackers to have an unspecified impact via a crafted VC-1 file, a related issue to CVE-201...

  • EPSS 2.97%
  • Veröffentlicht 20.05.2011 22:55:02
  • Zuletzt bearbeitet 16.06.2026 23:23:48

FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a malformed WMV file.

  • EPSS 4.23%
  • Veröffentlicht 20.05.2011 22:55:02
  • Zuletzt bearbeitet 16.06.2026 23:27:57

FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a malformed RealMedia file.

  • EPSS 4.43%
  • Veröffentlicht 20.05.2011 22:55:02
  • Zuletzt bearbeitet 16.06.2026 23:27:57

FFmpeg 0.5.x, as used in MPlayer and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed VC-1 file.

Exploit
  • EPSS 3.01%
  • Veröffentlicht 22.01.2011 22:00:04
  • Zuletzt bearbeitet 16.06.2026 23:25:22

libavcodec/vorbis_dec.c in the Vorbis decoder in FFmpeg 0.6.1 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted .ogg file, related to the vorbis_floor0_decode function. NOTE: this might overlap CVE-20...

  • EPSS 1.32%
  • Veröffentlicht 22.01.2011 22:00:04
  • Zuletzt bearbeitet 16.06.2026 23:25:23

Integer overflow in the vorbis_residue_decode_internal function in libavcodec/vorbis_dec.c in the Vorbis decoder in FFmpeg, possibly 0.6, has unspecified impact and remote attack vectors, related to the sizes of certain integer data types. NOTE: thi...

  • EPSS 4.18%
  • Veröffentlicht 30.09.2010 15:00:03
  • Zuletzt bearbeitet 16.06.2026 23:22:45

flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."

Exploit
  • EPSS 5.1%
  • Veröffentlicht 10.02.2010 02:30:00
  • Zuletzt bearbeitet 16.06.2026 23:14:03

Off-by-one error in the VP3 decoder (vp3.c) in FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted VP3 file that triggers an out-of-bounds read and possibly memory corruption.

Exploit
  • EPSS 2.17%
  • Veröffentlicht 10.02.2010 02:30:00
  • Zuletzt bearbeitet 16.06.2026 23:14:03

oggparsevorbis.c in FFmpeg 0.5 does not properly perform certain pointer arithmetic, which might allow remote attackers to obtain sensitive memory contents and cause a denial of service via a crafted file that triggers an out-of-bounds read.

Exploit
  • EPSS 7.95%
  • Veröffentlicht 10.02.2010 02:30:00
  • Zuletzt bearbeitet 16.06.2026 23:14:03

vorbis_dec.c in FFmpeg 0.5 uses an assignment operator when a comparison operator was intended, which might allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted file that modifies a loop counter and tr...