RCE in Ffmpeg

CVE-2010-3429

flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."

Vulnerability class: RCE (Remote Code Execution)

EPSS: 0.050 (89.9th percentile) — read the EPSS interpretation.

Affected products

Ffmpeg — versions 0.4.0, 0.4.2, 0.3.1
Ffmpeg Libavcodec
Mplayerhq Mplayer — versions 0.11, 0.17a_idegcounter, 0.17_idegcounter
N/a — versions n/a

Weakness classification (CWE)

CWE-94 — Code Injection

References

MDVSA-2011:088 (vendor-advisory, x_refsource_MANDRIVA)
[oss-security] 20100928 [oCERT-2010-004] FFmpeg/libavcodec arbitrary offset dereference (mailing-list, x_refsource_MLIST)
cve@mitre.org (x_refsource_CONFIRM)
MDVSA-2011:061 (vendor-advisory, x_refsource_MANDRIVA)
MDVSA-2011:062 (vendor-advisory, x_refsource_MANDRIVA)
20100928 [oCERT-2010-004] FFmpeg/libavcodec arbitrary offset dereference (mailing-list, x_refsource_BUGTRAQ)
MDVSA-2011:112 (vendor-advisory, x_refsource_MANDRIVA)
MDVSA-2011:114 (vendor-advisory, x_refsource_MANDRIVA)
43323 (x_refsource_SECUNIA, third-party-advisory)
USN-1104-1 (x_refsource_UBUNTU, vendor-advisory)