Vulnerabilities > CVE-2013-0870 - Unspecified vulnerability in Ffmpeg 1.1.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
The 'vp3_decode_frame' function in FFmpeg 1.1.4 moves threads check out of header packet type check.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=14c8ee00ffd9d45e6e0c6f11a957ce7e56f7eb3a
- http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=14c8ee00ffd9d45e6e0c6f11a957ce7e56f7eb3a
- http://www.openwall.com/lists/oss-security/2014/02/08/5
- http://www.openwall.com/lists/oss-security/2014/02/08/5
- https://www.ffmpeg.org/security.html
- https://www.ffmpeg.org/security.html