CVE-2008-4201

Heap-based buffer overflow in the decodeMP4file function (frontend/main.c) in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MPEG-4 (MP4) file.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:audiocoding:faad2:*:*:*:*:*:*:*:*
cpe:2.3:a:audiocoding:faad2:1.1:*:*:*:*:*:*:*
cpe:2.3:a:audiocoding:faad2:2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:audiocoding:faad2:2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:audiocoding:faad2:2.0:rc3:*:*:*:*:*:*
cpe:2.3:a:audiocoding:faad2:2.5:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-09-24 11:42

Updated : 2024-02-04 17:33


NVD link : CVE-2008-4201

Mitre link : CVE-2008-4201

CVE.ORG link : CVE-2008-4201


JSON object : View

Products Affected

audiocoding

  • faad2
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer