Multiple buffer overflows in asf_http_request of MPlayer before 0.92 allows remote attackers to execute arbitrary code via an ASX header with a long hostname.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mplayer | Mplayer | 0.90 (including) | 0.90 (including) |
| Mplayer | Mplayer | 0.90_pre (including) | 0.90_pre (including) |
| Mplayer | Mplayer | 0.90_rc (including) | 0.90_rc (including) |
| Mplayer | Mplayer | 0.90_rc4 (including) | 0.90_rc4 (including) |
| Mplayer | Mplayer | 0.91 (including) | 0.91 (including) |
| Mplayer | Mplayer | 1.0_pre1 (including) | 1.0_pre1 (including) |
References
- http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000760
- http://marc.info/?l=bugtraq\u0026m=106454257221455\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=106460912721618\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=106485005213109\u0026w=2
- http://www.mplayerhq.hu/homepage/design6/news.html
- http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000760
- http://marc.info/?l=bugtraq\u0026m=106454257221455\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=106460912721618\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=106485005213109\u0026w=2
- http://www.mplayerhq.hu/homepage/design6/news.html