Shodan
Vulnerabilities
Vulnerable Software
Libav:  >> Libav  >> 12.2  Security Vulnerabilities
CVE-2017-18243
The unpack_parse_unit function in libavcodec/dirac_parser.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault) via a crafted file.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-03-22
CVE-2017-18244
The stereo_processing function in libavcodec/aacps.c in Libav 12.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted aac file, related to ff_ps_apply.
CVSS Score
6.5
EPSS Score
0.006
Published
2018-03-22
CVE-2018-5766
In Libav through 12.2, there is an invalid memcpy in the av_packet_ref function of libavcodec/avpacket.c. Remote attackers could leverage this vulnerability to cause a denial of service (segmentation fault) via a crafted avi file.
CVSS Score
8.8
EPSS Score
0.008
Published
2018-01-18
CVE-2018-5684
In Libav through 12.2, there is an invalid memcpy call in the ff_mov_read_stsd_entries function of libavformat/mov.c. Remote attackers could leverage this vulnerability to cause a denial of service (segmentation fault) and program failure with a crafted avi file.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-01-14
CVE-2017-17127
The vc1_decode_frame function in libavcodec/vc1dec.c in Libav 12.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
CVSS Score
6.5
EPSS Score
0.004
Published
2017-12-04
CVE-2017-17128
The h264_slice_init function in libavcodec/h264_slice.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted file.
CVSS Score
6.5
EPSS Score
0.004
Published
2017-12-04
CVE-2017-17129
The ff_vc1_mc_4mv_chroma4 function in libavcodec/vc1_mc.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault and application crash) or possibly have unspecified other impact via a crafted file.
CVSS Score
8.8
EPSS Score
0.004
Published
2017-12-04
CVE-2017-17130
The ff_free_picture_tables function in libavcodec/mpegpicture.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file, related to vc1_decode_i_blocks_adv.
CVSS Score
8.8
EPSS Score
0.005
Published
2017-12-04


Products
Pricing
Contact Us

Shodan ® - All rights reserved