CVE-2014-9603 in FFmpeg정보

요약

\~에 의해 MITRE

The vmd_decode function in libavcodec/vmdvideo.c in FFmpeg before 2.5.2 does not validate the relationship between a certain length value and the frame width, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted Sierra VMD video data.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

출처

Interested in the pricing of exploits?

See the underground prices here!