ID de Prueba:	1.3.6.1.4.1.25623.1.0.800580
Categoría:	Buffer overflow
Título:	Xvid Buffer overflow Vulnerability (Jun 2009) - Windows
Resumen:	Xvid is prone to a buffer overflow vulnerability.
Descripción:	Summary: Xvid is prone to a buffer overflow vulnerability. Vulnerability Insight: - Inadequate sanitation of user supplied data in 'decoder_iframe', 'decoder_pframe' and 'decoder_bframe' functions in xvidcore/src/decoder.c and can be exploited by providing a crafted macroblock (aka MBlock) number in a video stream in a crafted movie file. - A boundary error in 'decoder_create' function n xvidcore/src/decoder.c can be exploited via vectors involving the DirectShow (aka DShow) frontend and improper handling of the XVID_ERR_MEMORY return code during processing of a crafted movie file Vulnerability Impact: Remote attackers may exploit this issue to cause multiple heap based buffer overflow, execute arbitrary code and may cause denial of service. Affected Software/OS: Xvid before 1.2.2 on Windows. Solution: Upgrade to Xvid 1.2.2 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0893 BugTraq ID: 35156 http://www.securityfocus.com/bid/35156 https://www.it-isac.org/postings/cyber/alertdetail.php?id=4634&selyear=2009&menutype=menupublic http://secunia.com/advisories/35274 http://www.vupen.com/english/advisories/2009/1468 Common Vulnerability Exposure (CVE) ID: CVE-2009-0894 BugTraq ID: 35158 http://www.securityfocus.com/bid/35158 https://www.it-isac.org/postings/cyber/alertdetail.php?id=4635&selyear=2009&menutype=menupublic
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.