Heap-based buffer overflow in the decoder_create function in the initialization functionality in xvidcore/src/decoder.c in Xvid before 1.2.2, as used by Windows Media Player and other applications, allows remote attackers to execute arbitrary code via vectors involving the DirectShow (aka DShow) frontend and improper handling of the XVID_ERR_MEMORY return code during processing of a crafted movie file. NOTE: some of these details are obtained from third party information.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:24:09
Updated: 2022-10-03T16:24:09
Reserved: 2022-10-03T00:00:00
Link: CVE-2009-0894
JSON object: View
NVD Information
Status : Modified
Published: 2009-06-02T18:30:00.250
Modified: 2023-11-07T02:03:46.337
Link: CVE-2009-0894
JSON object: View
Redhat Information
No data.
CWE