Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:STC:DL:MPLAYER-DEMUXER

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 MPlayer Real Demuxer stream_read Heap Overflow

Release Date

 2010/10/13

Update Number

 1791

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: MPlayer Real Demuxer stream_read Heap Overflow


There exists a heap overflow vulnerability in MPlayer. The flaw is due to insufficient input validation when processing Real Media files. A remote attacker may exploit this vulnerability by persuading the target user to open a malicious Real Media file. Successful attack could allow for arbitrary code injection and execution with privileges of the currently logged on user. In a successful attack, arbitrary code is supplied and executed on the vulnerable target host. The behaviour of the target system is dependent on the malicious code. Note that any code executed by the attacker runs with the privileges of the logged in user. In an attack where code execution fails, the vulnerable application will terminate abnormally while parsing the malicious RealMedia file.

Extended Description

MPlayer is prone to a remote heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input before copying it to an insufficiently sized buffer. Attackers can exploit this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions. MPlayer 1.0 rc2 is vulnerable; prior versions are also affected.

Affected Products

  • Gentoo Linux
  • Mandriva Corporate Server 3.0.0
  • Mandriva Corporate Server 3.0.0 X86 64
  • Mandriva Linux Mandrake 2008.0
  • Mandriva Linux Mandrake 2008.0 X86 64
  • Mandriva Linux Mandrake 2008.1
  • Mandriva Linux Mandrake 2008.1 X86 64
  • Mandriva Linux Mandrake 2009.0
  • Mandriva Linux Mandrake 2009.0 X86 64
  • MPlayer 0.90.0
  • MPlayer 0.90.0 Pre Series
  • MPlayer 0.9.0 0Rc4
  • MPlayer 0.90.0 Rc Series
  • MPlayer 0.91.0
  • MPlayer 0.92.0
  • MPlayer 0.92.1
  • MPlayer 0 92 CVS
  • MPlayer 1.0
  • MPlayer 1.0.0 Pre1
  • MPlayer 1.0.0 Pre2
  • MPlayer 1.0.0 Pre3
  • MPlayer 1.0.0 Pre3try2
  • MPlayer 1.0.0 Pre4
  • MPlayer 1.0.0 Pre5
  • MPlayer 1.0.0 Pre5try1
  • MPlayer 1.0.0 Pre5try2
  • MPlayer 1.0.0 Pre6
  • MPlayer 1.0.0 Pre6-3.3.5-20050130
  • MPlayer 1.0.0 Pre6-R4
  • MPlayer 1.0.20060329
  • MPlayer 1.0Pre7try2
  • MPlayer 1.0 -Rc1
  • MPlayer 1.0Rc2
  • Pardus Linux 2008
  • Webmin 0.1.0

References

  • BugTraq: 31473
  • CVE: CVE-2008-3827

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out