Out-of-Array Read Denial of Service Vulnerability in FFmpeg's decode_init Function

Out-of-Array Read Denial of Service Vulnerability in FFmpeg's decode_init Function

CVE-2018-10001 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The decode_init function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via an AVI file.

Learn more about our Web Application Penetration Testing UK.