The oggplay_data_handle_theora_frame function in media/liboggplay/src/liboggplay/oggplay_data.c in liboggplay, as used in Mozilla Firefox 3.5.x before 3.5.4, attempts to reuse an earlier frame data structure upon encountering a decoding error for the first frame, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly execute arbitrary code via a crafted .ogg video file.
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2009-10-29T14:00:00

Updated: 2017-09-18T12:57:01

Reserved: 2009-09-24T00:00:00


Link: CVE-2009-3378

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2009-10-29T14:30:01.017

Modified: 2017-09-19T01:29:35.827


Link: CVE-2009-3378

JSON object: View

cve-icon Redhat Information

No data.