Test Kennung:	1.3.6.1.4.1.25623.1.0.800580
Kategorie:	Buffer overflow
Titel:	Xvid Buffer overflow Vulnerability (Jun 2009) - Windows
Zusammenfassung:	Xvid is prone to a buffer overflow vulnerability.
Beschreibung:	Summary: Xvid is prone to a buffer overflow vulnerability. Vulnerability Insight: - Inadequate sanitation of user supplied data in 'decoder_iframe', 'decoder_pframe' and 'decoder_bframe' functions in xvidcore/src/decoder.c and can be exploited by providing a crafted macroblock (aka MBlock) number in a video stream in a crafted movie file. - A boundary error in 'decoder_create' function n xvidcore/src/decoder.c can be exploited via vectors involving the DirectShow (aka DShow) frontend and improper handling of the XVID_ERR_MEMORY return code during processing of a crafted movie file Vulnerability Impact: Remote attackers may exploit this issue to cause multiple heap based buffer overflow, execute arbitrary code and may cause denial of service. Affected Software/OS: Xvid before 1.2.2 on Windows. Solution: Upgrade to Xvid 1.2.2 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0893 BugTraq ID: 35156 http://www.securityfocus.com/bid/35156 https://www.it-isac.org/postings/cyber/alertdetail.php?id=4634&selyear=2009&menutype=menupublic http://secunia.com/advisories/35274 http://www.vupen.com/english/advisories/2009/1468 Common Vulnerability Exposure (CVE) ID: CVE-2009-0894 BugTraq ID: 35158 http://www.securityfocus.com/bid/35158 https://www.it-isac.org/postings/cyber/alertdetail.php?id=4635&selyear=2009&menutype=menupublic
Copyright	Copyright (C) 2009 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.