Signature Detail
Short Name |
HTTP:STC:DL:4XM-VULNS |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
FFmpeg 4xm Memory Corruption |
Release Date |
2010/09/22 |
Update Number |
1777 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: FFmpeg 4xm Memory Corruption
This signature detects attempts to exploit a known vulnerability in the FFmpeg 4xm engine. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the client.
Extended Description
FFmpeg is prone to a remote code-execution vulnerability because it fails to adequately validate user-supplied input. An attacker can exploit this issue to execute arbitrary code in the context of the application. Failed exploit attempts will result in a denial-of-service condition. Versions prior to FFmpeg trunk revision 16846 are vulnerable.
Affected Products
- Debian Linux 4.0
- Debian Linux 4.0 Alpha
- Debian Linux 4.0 Amd64
- Debian Linux 4.0 Arm
- Debian Linux 4.0 Armel
- Debian Linux 4.0 Hppa
- Debian Linux 4.0 Ia-32
- Debian Linux 4.0 Ia-64
- Debian Linux 4.0 M68k
- Debian Linux 4.0 Mips
- Debian Linux 4.0 Mipsel
- Debian Linux 4.0 Powerpc
- Debian Linux 4.0 S/390
- Debian Linux 4.0 Sparc
- Debian Linux 5.0
- Debian Linux 5.0 Alpha
- Debian Linux 5.0 Amd64
- Debian Linux 5.0 Arm
- Debian Linux 5.0 Armel
- Debian Linux 5.0 Hppa
- Debian Linux 5.0 Ia-32
- Debian Linux 5.0 Ia-64
- Debian Linux 5.0 M68k
- Debian Linux 5.0 Mips
- Debian Linux 5.0 Mipsel
- Debian Linux 5.0 Powerpc
- Debian Linux 5.0 S/390
- Debian Linux 5.0 Sparc
- FFmpeg 0.4.6
- FFmpeg 0.4.7
- FFmpeg 0.4.8
- FFmpeg 0.4.9
- FFmpeg 0.4.9 -0.Pre1.5.1.20060
- FFmpeg 0.4.9 20080909
- FFmpeg 0.49 P20060530
- FFmpeg 0.4.9 -Pre1
- FFmpeg 0.8.7
- FFmpeg 0.8.7 -R1
- FFmpeg 2005-03-13
- Gentoo Linux
- Mandriva Corporate Server 3.0.0
- Mandriva Corporate Server 3.0.0 X86 64
- Mandriva Corporate Server 4.0
- Mandriva Corporate Server 4.0.0 X86 64
- Mandriva Enterprise Server 5
- Mandriva Enterprise Server 5 X86 64
- Mandriva Linux Mandrake 2008.0
- Mandriva Linux Mandrake 2008.0 X86 64
- Mandriva Linux Mandrake 2009.0
- Mandriva Linux Mandrake 2009.0 X86 64
- Pardus Linux 2008
- Red Hat Fedora 10
- Red Hat Fedora 9
- Slackware Linux 12.0
- Slackware Linux 12.1
- Slackware Linux 12.2
- Slackware Linux -Current
- SuSE openSUSE 10.3
- SuSE openSUSE 11.0
- SuSE openSUSE 11.1
- SuSE SUSE Linux Enterprise 10
- SuSE SUSE Linux Enterprise 11
- Ubuntu Ubuntu Linux 6.06 LTS Amd64
- Ubuntu Ubuntu Linux 6.06 LTS I386
- Ubuntu Ubuntu Linux 6.06 LTS Powerpc
- Ubuntu Ubuntu Linux 6.06 LTS Sparc
- Ubuntu Ubuntu Linux 7.10 Amd64
- Ubuntu Ubuntu Linux 7.10 I386
- Ubuntu Ubuntu Linux 7.10 Lpia
- Ubuntu Ubuntu Linux 7.10 Powerpc
- Ubuntu Ubuntu Linux 7.10 Sparc
- Ubuntu Ubuntu Linux 8.04 LTS Amd64
- Ubuntu Ubuntu Linux 8.04 LTS I386
- Ubuntu Ubuntu Linux 8.04 LTS Lpia
- Ubuntu Ubuntu Linux 8.04 LTS Powerpc
- Ubuntu Ubuntu Linux 8.04 LTS Sparc
- Ubuntu Ubuntu Linux 8.10 Amd64
- Ubuntu Ubuntu Linux 8.10 I386
- Ubuntu Ubuntu Linux 8.10 Lpia
- Ubuntu Ubuntu Linux 8.10 Powerpc
- Ubuntu Ubuntu Linux 8.10 Sparc
- xine xine-lib 1.0.0
- xine xine-lib 1.0.1
- xine xine-lib 1.0.2
- xine xine-lib 1.1.0
- xine xine-lib 1.1.1
- xine xine-lib 1.1.10
- xine xine-lib 1.1.10.1
- xine xine-lib 1.1.11
- xine xine-lib 1.1.11.1
- xine xine-lib 1.1.12
- xine xine-lib 1.1.13
- xine xine-lib 1.1.14
- xine xine-lib 1.1.15
- xine xine-lib 1.1.16
- xine xine-lib 1.1.16.1
- xine xine-lib 1.1.2
- xine xine-lib 1.1.3
- xine xine-lib 1.1.4
- xine xine-lib 1.1.9
- xine xine-lib 1.1.9.1
References
- BugTraq: 33502
- CVE: CVE-2009-0385