CVSS: 9.8EPSS: 2%CPEs: 40EXPL: 0CVE-2011-4351 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-4351
25 Oct 2013 — Buffer overflow in FFmpeg before 0.5.6, 0.6.x before 0.6.4, 0.7.x before 0.7.8, and 0.8.x before 0.8.8 allows remote attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en FFmpeg anterior a la versión 0.5.6, 0.6.x anterior a 0.6.4, 0.7.x anterior a la versión 0.7.8, y 0.8.x anterior a 0.8.8 permite a atacantes remotos ejecutar código arbitrario a través de vectores sin especificar. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attacker... • http://seclists.org/bugtraq/2011/Nov/145 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-2771 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2012-2771
25 Oct 2013 — Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2773, CVE-2012-2778, CVE-2012-2780, and CVE-2012-2781. Una vulnerabilidad sin especificar en FFmpeg en versiones anteriores a la 0.10.3 tiene un impacto y vectores de ataque desconocidos. Esta vulnerabilidad es diferente a CVE-2012-2773, CVE-2012-2778, CVE-2012-2780, y CVE-2012-2781. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to... • https://www.ffmpeg.org/security.html •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-2773 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2012-2773
25 Oct 2013 — Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2778, CVE-2012-2780, and CVE-2012-2781. Una vulnerabilidad sin especificar en FFmpeg en versiones anteriores a la 0.10.3 tiene un impacto y vectores de ataque desconocidos. Esta vulnerabilidad es diferente a CVE-2012-2771, CVE-2012-2778, CVE-2012-2780, y CVE-2012-2781. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to... • http://www.securityfocus.com/bid/100274 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-2778 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2012-2778
25 Oct 2013 — Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2780, and CVE-2012-2781. Una vulnerabilidad sin especificar en FFmpeg en versiones anteriores a la 0.10.3 tiene un impacto y vectores de ataque desconocidos. Esta vulnerabilidad es diferente a CVE-2012-2771, CVE-2012-2773, CVE-2012-2780, y CVE-2012-2781. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to... • http://www.securityfocus.com/bid/100273 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-2780 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2012-2780
25 Oct 2013 — Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, and CVE-2012-2781. Una vulnerabilidad sin especificar en FFmpeg en versiones anteriores a la 0.10.3 tiene un impacto y vectores de ataque desconocidos. Esta vulnerabilidad es diferente a CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, y CVE-2012-2781. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to... • http://www.securityfocus.com/bid/100272 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-2781 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2012-2781
25 Oct 2013 — Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, and CVE-2012-2780. Una vulnerabilidad sin especificar en FFmpeg en versiones anteriores a la 0.10.3 tiene un impacto y vectores de ataque desconocidos. Esta vulnerabilidad es diferente a CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, y CVE-2012-2780. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to... • http://www.securityfocus.com/bid/100250 •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3672 – Debian Security Advisory 3003-1
https://notcve.org/view.php?id=CVE-2013-3672
10 Jun 2013 — The mm_decode_inter function in mmvideo.c in libavcodec in FFmpeg before 1.2.1 does not validate the relationship between a horizontal coordinate and a width value, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted American Laser Games (ALG) MM Video data. La función mm_decode_inter en mmvideo.c en libavcodec en FFmpeg anterior a 1.2.1 no valida adecuadamente la relación entre la coordenada horizontal y el valor "with", lo que permite a... • http://ffmpeg.org/security.html • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3673 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2013-3673
10 Jun 2013 — The gif_decode_frame function in gifdec.c in libavcodec in FFmpeg before 1.2.1 does not properly manage the disposal methods of frames, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted GIF data. La función gif_decode_frame en gifdec.c en libavcodec en FFmpeg anterior a 1.2.1 no administra adecuadamente la disposición de los métodos de los frames, lo que permite a atacantes remotos provocar una denegación de servicio (acceso a array fue... • http://ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3675 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2013-3675
10 Jun 2013 — The process_frame_obj function in sanm.c in libavcodec in FFmpeg before 1.2.1 does not validate width and height values, which allows remote attackers to cause a denial of service (integer overflow, out-of-bounds array access, and application crash) via crafted LucasArts Smush video data. La función rocess_frame_obj function en sanm.c en libavcodec en FFmpeg anterior a 1.2.1 no valida el ancho y alto de los valores, lo que permite a atacantes remotos provocar una denegación de servicio (desbordamiento de en... • http://ffmpeg.org/security.html • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3670 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2013-3670
10 Jun 2013 — The rle_unpack function in vmdav.c in libavcodec in FFmpeg git 20130328 through 20130501 does not properly use the bytestream2 API, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted RLE data. NOTE: the vendor has listed this as an issue fixed in 1.2.1, but the issue is actually in new code that was not shipped with the 1.2.1 release or any earlier release. La función rle_unpack en vmdav.c en libavcodec en FFmpeg git 20130328 a la 201305... • http://ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •