Invalid Channel Count Vulnerability in FFmpeg's read_header Function

Invalid Channel Count Vulnerability in FFmpeg's read_header Function

CVE-2013-0873 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The read_header function in libavcodec/shorten.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid channel count, related to "freeing invalid addresses."

Learn more about our Web Application Penetration Testing UK.