CVE-2006-4799
published 2006-09-14CVE-2006-4799: Buffer overflow in ffmpeg for xine-lib before 1.1.2 might allow context-dependent attackers to execute arbitrary code via a crafted AVI file and "bad indexes"…
PriorityP431high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.80%
84.7th percentile
Buffer overflow in ffmpeg for xine-lib before 1.1.2 might allow context-dependent attackers to execute arbitrary code via a crafted AVI file and "bad indexes", a different vulnerability than CVE-2005-4048 and CVE-2006-2802.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| xine | xine-lib | <= 1.1.1 | — |
| xine | xine-lib | — | — |
| xine | xine-lib | — | — |
| xine | xine-lib | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_ubuntu7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7hpv-pj9m-wmwr: Buffer overflow in ffmpeg for xine-lib before 1
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2006-4799 [HIGH] GHSA-7hpv-pj9m-wmwr: Buffer overflow in ffmpeg for xine-lib before 1
Buffer overflow in ffmpeg for xine-lib before 1.1.2 might allow context-dependent attackers to execute arbitrary code via a crafted AVI file and "bad indexes", a different vulnerability than CVE-2005-4048 and CVE-2006-2802.
Ubuntu
ffmpeg, xine-lib vulnerabilities
vendor_ubuntu·2006-10-05·CVSS 7.5
CVE-2006-4800 [HIGH] ffmpeg, xine-lib vulnerabilities
Title: ffmpeg, xine-lib vulnerabilities
Summary: ffmpeg, xine-lib vulnerabilities
XFOCUS Security Team discovered that the AVI decoder used in xine-lib did not
correctly validate certain headers. By tricking a user into playing an AVI
with malicious headers, an attacker could execute arbitrary code with the
target user's privileges. (CVE-2006-4799)
Multiple integer overflows were discovered in ffmpeg and tools that contain a
copy of ffmpeg (like xine-lib and kino), for several types of video formats.
By tricking a user into running a video player that uses ffmpeg on a stream
with malicious content, an attacker could execute arbitrary code with the
target user's privileges. (CVE-2006-4800)
Instructions: In general, a standard system upgrade is sufficient to effect the
necessary changes.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/22230http://secunia.com/advisories/23010http://secunia.com/advisories/23213http://www.gentoo.org/security/en/glsa/glsa-200609-09.xmlhttp://www.novell.com/linux/security/advisories/2006_73_mono.htmlhttp://www.ubuntu.com/usn/usn-358-1http://www.us.debian.org/security/2006/dsa-1215http://xinehq.de/index.php/newshttp://secunia.com/advisories/22230http://secunia.com/advisories/23010http://secunia.com/advisories/23213http://www.gentoo.org/security/en/glsa/glsa-200609-09.xmlhttp://www.novell.com/linux/security/advisories/2006_73_mono.htmlhttp://www.ubuntu.com/usn/usn-358-1http://www.us.debian.org/security/2006/dsa-1215http://xinehq.de/index.php/news
2006-09-14
Published