Vulnerabilities > CVE-2014-125008 - Out-of-bounds Write vulnerability in Ffmpeg 2.0

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

ffmpeg

CWE-787

NVD

Published: 2022-06-18

Updated: 2023-11-07

Summary

A vulnerability classified as problematic has been found in FFmpeg 2.0. Affected is the function vorbis_header of the file libavformat/oggparsevorbis.c. The manipulation leads to memory corruption. It is possible to launch the attack remotely. It is recommended to apply a patch to fix this issue.

Vulnerable Configurations

Part	Description	Count
Application	Ffmpeg Ffmpeg Ffmpeg 2.0	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://vuldb.com/?id.12582
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=f5d1d1e4667ba346ea7e0f97e6d2756bc9d4abde