Remote Memory Corruption Vulnerability in FFmpeg 2.0's vorbis_header Function

Remote Memory Corruption Vulnerability in FFmpeg 2.0's vorbis_header Function

CVE-2014-125008 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

A vulnerability classified as problematic has been found in FFmpeg 2.0. Affected is the function vorbis_header of the file libavformat/oggparsevorbis.c. The manipulation leads to memory corruption. It is possible to launch the attack remotely. It is recommended to apply a patch to fix this issue.

Learn more about our Web Application Penetration Testing UK.