Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2015-8365

The smka_decode_frame function in libavcodec/smacker.c in FFmpeg before 2.6.5, 2.7.x before 2.7.3, and 2.8.x through 2.8.2 does not verify that the data size is consistent with the number of channels, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted Smacker data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.2%
CVSS Severity
CVSS v2 Score 6.8
Products affected by CVE-2015-8365
  • Ffmpeg » Ffmpeg » Version: 2.6.4
    cpe:2.3:a:ffmpeg:ffmpeg:2.6.4
  • Ffmpeg » Ffmpeg » Version: 2.7.0
    cpe:2.3:a:ffmpeg:ffmpeg:2.7.0
  • Ffmpeg » Ffmpeg » Version: 2.7.1
    cpe:2.3:a:ffmpeg:ffmpeg:2.7.1
  • Ffmpeg » Ffmpeg » Version: 2.7.2
    cpe:2.3:a:ffmpeg:ffmpeg:2.7.2
  • Ffmpeg » Ffmpeg » Version: 2.8.0
    cpe:2.3:a:ffmpeg:ffmpeg:2.8.0
  • Ffmpeg » Ffmpeg » Version: 2.8.1
    cpe:2.3:a:ffmpeg:ffmpeg:2.8.1
  • Ffmpeg » Ffmpeg » Version: 2.8.2
    cpe:2.3:a:ffmpeg:ffmpeg:2.8.2
  • Canonical » Ubuntu Linux » Version: 12.04
    cpe:2.3:o:canonical:ubuntu_linux:12.04


Products
Pricing
Contact Us

Shodan ® - All rights reserved