Unrestricted Read Operations Vulnerability in FFmpeg

Unrestricted Read Operations Vulnerability in FFmpeg

CVE-2011-2160 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does not properly restrict read operations, which allows remote attackers to have an unspecified impact via a crafted VC-1 file, a related issue to CVE-2011-0723.

Learn more about our Web Application Penetration Testing UK.