FFmpeg.Vmd_read_header.Integer.Overflow
| Release Date | Dec 17, 2009 |
| Severity | Medium |
| Impact | System Compromise |
| Description | This indicates an attack attempt against an integer-overflow vulnerability in FFmpeg.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted VMD file. It allows a remote attacker to execute arbitrary code. |
| Affected Products | FFmpeg 0.5 |
| Recommended Actions | Upgrade to the latest versions:
http://ffmpeg.mplayerhq.hu/ |
| Reference/s | http://www.securityfocus.com/bid/36419 (BugTraq)
http://secunia.com/advisories/36760/
|
Reference: VID-18001
|