Buffer underflow vulnerability in sbr_qmf_synthesis function in FFmpeg before 0.9.1

Buffer underflow vulnerability in sbr_qmf_synthesis function in FFmpeg before 0.9.1

CVE-2012-0850 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The sbr_qmf_synthesis function in libavcodec/aacsbr.c in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service (application crash) via a crafted mpg file that triggers memory corruption involving the v_off variable, probably a buffer underflow.

Learn more about our Web Application Penetration Testing UK.