CVE-2008-0486

Priority
Description
Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and
SVN before r25917, and possibly earlier versions, as used in Xine-lib
1.1.10, might allow remote attackers to execute arbitrary code via a
crafted FLAC tag, which triggers a buffer overflow.
Assigned-to
jdstrand
Notes
jdstrandaccording to http://xinehq.de/index.php/security, 1.1.1 and older
are not affected
More Information

Updated: 2020-09-10 00:35:50 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)