Arbitrary Code Execution via Crafted ASF Packet in FFmpeg

CVE-2011-4031 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Integer underflow in the asfrtp_parse_packet function in libavformat/rtpdec_asf.c in FFmpeg before 0.8.3 allows remote attackers to execute arbitrary code via a crafted ASF packet.

Learn more about our Web Application Penetration Testing UK.