Critical Memory Corruption Vulnerability in FFmpeg 2.0: Remote Code Execution via rpza_decode_stream

Critical Memory Corruption Vulnerability in FFmpeg 2.0: Remote Code Execution via rpza_decode_stream

CVE-2014-125017 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A vulnerability classified as critical was found in FFmpeg 2.0. This vulnerability affects the function rpza_decode_stream. The manipulation leads to memory corruption. The attack can be initiated remotely. The name of the patch is Fixes Invalid Writes. It is recommended to apply a patch to fix this issue.

Learn more about our Web Application Penetration Testing UK.