CVE-2013-3675 in FFmpeginformation

Résumé

par MITRE

The process_frame_obj function in sanm.c in libavcodec in FFmpeg before 1.2.1 does not validate width and height values, which allows remote attackers to cause a denial of service (integer overflow, out-of-bounds array access, and application crash) via crafted LucasArts Smush video data.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Sources

Do you want to use VulDB in your project?

Use the official API to access entries easily!