CVE-2009-0387 - OpenCVE

Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted Sync Sample (aka stss) atom data in a malformed QuickTime media .mov file, related to "mark keyframes."

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Gstreamer	Good Plug-ins Plug-ins

Configuration 1 [-]

OR	cpe:2.3:a:gstreamer:good_plug-ins:0.10.9:::::::*
	cpe:2.3:a:gstreamer:good_plug-ins:0.10.10:::::::*
	cpe:2.3:a:gstreamer:good_plug-ins:0.10.11:::::::*
	cpe:2.3:a:gstreamer:plug-ins:0.8.5:::::::*

References

Link	Resource
http://cgit.freedesktop.org/gstreamer/gst-plugins-good/commit/?id=bdc20b9baf13564d9a061343416395f8f9a92b53
http://gstreamer.freedesktop.org/releases/gst-plugins-good/0.10.12.html	Patch Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html
http://secunia.com/advisories/33650	Vendor Advisory
http://secunia.com/advisories/33815
http://secunia.com/advisories/34336
http://secunia.com/advisories/35777
http://security.gentoo.org/glsa/glsa-200907-11.xml
http://trapkit.de/advisories/TKADV2009-003.txt	Exploit
http://www.mandriva.com/security/advisories?name=MDVSA-2009:035
http://www.openwall.com/lists/oss-security/2009/01/29/3
http://www.redhat.com/support/errata/RHSA-2009-0271.html
http://www.securityfocus.com/archive/1/500317/100/0/threaded
http://www.securityfocus.com/bid/33405
http://www.ubuntu.com/usn/USN-736-1
http://www.vupen.com/english/advisories/2009/0225
https://bugzilla.redhat.com/show_bug.cgi?id=481267
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10611

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2009-02-02T19:00:00

Updated: 2018-10-11T19:57:01

Reserved: 2009-02-02T00:00:00

Link: CVE-2009-0387

JSON object: View

NVD Information

Status : Modified

Published: 2009-02-02T19:30:00.377

Modified: 2018-10-11T21:01:36.477

Link: CVE-2009-0387

JSON object: View

Redhat Information

No data.

CWE

CWE-119

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-01-22T00:00:00", "descriptions": [{"lang": "en", "value": "Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted Sync Sample (aka stss) atom data in a malformed QuickTime media .mov file, related to \"mark keyframes.\""}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "33405", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/33405"}, {"name": "20090122 [TKADV2009-003] GStreamer Heap Overflow and Array Index out of Bounds Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/500317/100/0/threaded"}, {"name": "34336", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/34336"}, {"name": "33815", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/33815"}, {"name": "35777", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/35777"}, {"tags": ["x_refsource_MISC"], "url": "http://trapkit.de/advisories/TKADV2009-003.txt"}, {"name": "RHSA-2009:0271", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2009-0271.html"}, {"name": "GLSA-200907-11", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-200907-11.xml"}, {"name": "33650", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/33650"}, {"name": "ADV-2009-0225", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2009/0225"}, {"name": "SUSE-SR:2009:005", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=481267"}, {"name": "USN-736-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/USN-736-1"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://gstreamer.freedesktop.org/releases/gst-plugins-good/0.10.12.html"}, {"name": "oval:org.mitre.oval:def:10611", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10611"}, {"name": "[oss-security] 20090129 CVE Request -- (sort of urgent) gstreamer-plugins-good (repost) (more details about affected versions -- final version)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2009/01/29/3"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://cgit.freedesktop.org/gstreamer/gst-plugins-good/commit/?id=bdc20b9baf13564d9a061343416395f8f9a92b53"}, {"name": "MDVSA-2009:035", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:035"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-0387", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted Sync Sample (aka stss) atom data in a malformed QuickTime media .mov file, related to \"mark keyframes.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "33405", "refsource": "BID", "url": "http://www.securityfocus.com/bid/33405"}, {"name": "20090122 [TKADV2009-003] GStreamer Heap Overflow and Array Index out of Bounds Vulnerabilities", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/500317/100/0/threaded"}, {"name": "34336", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/34336"}, {"name": "33815", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/33815"}, {"name": "35777", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/35777"}, {"name": "http://trapkit.de/advisories/TKADV2009-003.txt", "refsource": "MISC", "url": "http://trapkit.de/advisories/TKADV2009-003.txt"}, {"name": "RHSA-2009:0271", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2009-0271.html"}, {"name": "GLSA-200907-11", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200907-11.xml"}, {"name": "33650", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/33650"}, {"name": "ADV-2009-0225", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2009/0225"}, {"name": "SUSE-SR:2009:005", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=481267", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=481267"}, {"name": "USN-736-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-736-1"}, {"name": "http://gstreamer.freedesktop.org/releases/gst-plugins-good/0.10.12.html", "refsource": "CONFIRM", "url": "http://gstreamer.freedesktop.org/releases/gst-plugins-good/0.10.12.html"}, {"name": "oval:org.mitre.oval:def:10611", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10611"}, {"name": "[oss-security] 20090129 CVE Request -- (sort of urgent) gstreamer-plugins-good (repost) (more details about affected versions -- final version)", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2009/01/29/3"}, {"name": "http://cgit.freedesktop.org/gstreamer/gst-plugins-good/commit/?id=bdc20b9baf13564d9a061343416395f8f9a92b53", "refsource": "CONFIRM", "url": "http://cgit.freedesktop.org/gstreamer/gst-plugins-good/commit/?id=bdc20b9baf13564d9a061343416395f8f9a92b53"}, {"name": "MDVSA-2009:035", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:035"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-0387", "datePublished": "2009-02-02T19:00:00", "dateReserved": "2009-02-02T00:00:00", "dateUpdated": "2018-10-11T19:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:gstreamer:good_plug-ins:0.10.9:*:*:*:*:*:*:*", "matchCriteriaId": "762FB2B0-CC29-4422-A675-CC2555A2B314", "vulnerable": true}, {"criteria": "cpe:2.3:a:gstreamer:good_plug-ins:0.10.10:*:*:*:*:*:*:*", "matchCriteriaId": "14C8ECF4-F1BE-44D2-BB20-2EE557DEDF80", "vulnerable": true}, {"criteria": "cpe:2.3:a:gstreamer:good_plug-ins:0.10.11:*:*:*:*:*:*:*", "matchCriteriaId": "69917C72-DD63-48D8-A268-6452F50484DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:gstreamer:plug-ins:0.8.5:*:*:*:*:*:*:*", "matchCriteriaId": "541159E6-630D-4A63-8FC3-A10816B1B4C9", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Array index error in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted Sync Sample (aka stss) atom data in a malformed QuickTime media .mov file, related to \"mark keyframes.\""}, {"lang": "es", "value": "Un error de indice en vector en la funcion qtdemux_parse_samples de gst/qtdemux/qtdemux.c en GStreamer Good Plug-ins (tambi\u00e9n conocido como gst-plugins-good) en sus versiones 0.10.9 a 0.10.11 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (que genera un fallo en la aplicaci\u00f3n) y posiblemente ejecutar c\u00f3digo arbitrario a trav\u00e9s de los datos modificados de una Sync Sample (tambi\u00e9n conocido como STSS) en un fichero .mov de v\u00eddeo/audio de Quicktime debidamente modificado en relaci\u00f3n con los \"mark keyframes\"."}], "id": "CVE-2009-0387", "lastModified": "2018-10-11T21:01:36.477", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2009-02-02T19:30:00.377", "references": [{"source": "cve@mitre.org", "url": "http://cgit.freedesktop.org/gstreamer/gst-plugins-good/commit/?id=bdc20b9baf13564d9a061343416395f8f9a92b53"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://gstreamer.freedesktop.org/releases/gst-plugins-good/0.10.12.html"}, {"source": "cve@mitre.org", "url": "http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/33650"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/33815"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/34336"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/35777"}, {"source": "cve@mitre.org", "url": "http://security.gentoo.org/glsa/glsa-200907-11.xml"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://trapkit.de/advisories/TKADV2009-003.txt"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:035"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2009/01/29/3"}, {"source": "cve@mitre.org", "url": "http://www.redhat.com/support/errata/RHSA-2009-0271.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/500317/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/33405"}, {"source": "cve@mitre.org", "url": "http://www.ubuntu.com/usn/USN-736-1"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2009/0225"}, {"source": "cve@mitre.org", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=481267"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10611"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}