Multiple integer overflows in MPlayer 1.0pre7try2 allow remote attackers to cause a denial of service and trigger heap-based buffer overflows via (1) a certain ASF file handled by asfheader.c that causes the asf_descrambling function to be passed a negative integer after the conversion from a char to an int or (2) an AVI file with a crafted wLongsPerEntry or nEntriesInUse value in the indx chunk, which is handled in aviheader.c.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-03-30T00:00:00
Updated: 2018-10-18T14:57:01
Reserved: 2006-03-29T00:00:00
Link: CVE-2006-1502
JSON object: View
NVD Information
Status : Modified
Published: 2006-03-30T00:06:00.000
Modified: 2018-10-18T16:32:53.577
Link: CVE-2006-1502
JSON object: View
Redhat Information
No data.
CWE