PublicDate: 2006-03-30 00:06:00 UTC
Candidate: CVE-2006-1502
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1502
Description:
 Multiple integer overflows in MPlayer 1.0pre7try2 allow remote attackers to
 cause a denial of service and trigger heap-based buffer overflows via (1) a
 certain ASF file handled by asfheader.c that causes the asf_descrambling
 function to be passed a negative integer after the conversion from a char
 to an int or (2) an AVI file with a crafted wLongsPerEntry or nEntriesInUse
 value in the indx chunk, which is handled in aviheader.c.
Ubuntu-Description: 
Notes: 
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs: 
 https://bugs.launchpad.net/ubuntu/+source/mplayer/+bug/163293
upstream_mplayer: released
dapper_mplayer: released (2:0.99+1.0pre7try2+cvs20060117-0ubuntu8.1)
edgy_mplayer: not-affected
feisty_mplayer: not-affected
gutsy_mplayer: not-affected
devel_mplayer: not-affected