CVE-2004-1285 | Vulnerability Database | Aqua Security

Buffer overflow in the get_header function in asf_mmst_streaming.c for MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a crafted ASF video stream.

Affected Software

Name	Vendor	Start Version	End Version
Mplayer	Mplayer	0.90 (including)	0.90 (including)
Mplayer	Mplayer	0.91 (including)	0.91 (including)
Mplayer	Mplayer	0.92 (including)	0.92 (including)
Mplayer	Mplayer	0.92.1 (including)	0.92.1 (including)
Mplayer	Mplayer	1.0_pre1 (including)	1.0_pre1 (including)
Mplayer	Mplayer	1.0_pre2 (including)	1.0_pre2 (including)
Mplayer	Mplayer	1.0_pre3 (including)	1.0_pre3 (including)
Mplayer	Mplayer	1.0_pre3try2 (including)	1.0_pre3try2 (including)
Mplayer	Mplayer	1.0_pre4 (including)	1.0_pre4 (including)
Mplayer	Mplayer	1.0_pre5 (including)	1.0_pre5 (including)
Mplayer	Mplayer	1.0_pre5try1 (including)	1.0_pre5try1 (including)

References

http://tigger.uic.edu/~jlongs2/holes/mplayer.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/18631

NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1285
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html