Vulnerability Details CVE-2003-0835
Multiple buffer overflows in asf_http_request of MPlayer before 0.92 allows remote attackers to execute arbitrary code via an ASX header with a long hostname.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.051
EPSS Ranking 89.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000760
- http://marc.info/?l=bugtraq&m=106454257221455&w=2
- http://marc.info/?l=bugtraq&m=106460912721618&w=2
- http://marc.info/?l=bugtraq&m=106485005213109&w=2
- http://www.mplayerhq.hu/homepage/design6/news.html
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000760
- http://marc.info/?l=bugtraq&m=106454257221455&w=2
- http://marc.info/?l=bugtraq&m=106460912721618&w=2
- http://marc.info/?l=bugtraq&m=106485005213109&w=2
- http://www.mplayerhq.hu/homepage/design6/news.html
Products affected by CVE-2003-0835
-
cpe:2.3:a:mplayer:mplayer:0.90
-
cpe:2.3:a:mplayer:mplayer:0.90_pre
-
cpe:2.3:a:mplayer:mplayer:0.90_rc
-
cpe:2.3:a:mplayer:mplayer:0.90_rc4
-
cpe:2.3:a:mplayer:mplayer:0.91
-
cpe:2.3:a:mplayer:mplayer:1.0_pre1