NVD

Id
37135  
Name
CVE-2013-0865  
Description
The vqa_decode_chunk function in libavcodec/vqavideo.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an unspecified impact via a large (1) cbp0 or (2) cbpz chunk in Westwood Studios VQA Video file, which triggers an out-of-bounds write.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2013-11-23  
Modified Date
2016-12-02  
Seq
2013-0865  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
189967 37135 CVE-2013-0865 http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=08e2c7a45f82b897a285548c257972eb1ad352c5  View
189968 37135 CVE-2013-0865 http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=f3d16706060ab6ae6dc78f15359fab3fd87c9495  View
189969 37135 CVE-2013-0865 DSA-2855  View
189970 37135 CVE-2013-0865 http://www.ffmpeg.org/security.html  View
189971 37135 CVE-2013-0865 GLSA-201603-06  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
23704 JVNDB-2013-005279 FFmpeg の libavcodec/vqavideo.c の vqa_decode_chunk 関数における脆弱性 FFmpeg の libavcodec/vqavideo.c の vqa_decode_chunk 関数には、不特定の影響を受ける脆弱性が存在します。 CVE-2013-0865 60807 CVE-2013-0865 37135 9.3 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-005279.html 2013-02-06 2013-11-27 View