CVE-2008-1558

Related Files

Mandriva Linux Security Advisory 2008-196

Posted Sep 16, 2008

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Uncontrolled array index in the sdpplin_parse function in stream/realrtsp/sdpplin.c in MPlayer 1.0 rc2 allows remote attackers to overwrite memory and execute arbitrary code via a large streamid SDP parameter. The updated packages have been patched to fix this issue.

tags | advisory, remote, arbitrary

systems | linux, mandriva

advisories | CVE-2008-1558

SHA-256 | 288b39aeb0256411875670bf5f2a1055a07b8cfcc4444c1fe4f369c2e347e08d

Download | Favorite | View

Gentoo Linux Security Advisory 200805-22

Posted May 29, 2008

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200805-22 - k'sOSe reported an integer overflow vulnerability in the sdpplin_parse() function in the file stream/realrtsp/sdpplin.c, which can be exploited to overwrite arbitrary memory regions via an overly large StreamCount SDP parameter. Versions less than 1.0_rc2_p26753 are affected.

tags | advisory, overflow, arbitrary

systems | linux, gentoo

advisories | CVE-2008-1558

SHA-256 | 7a6af3650e7b8a3de24803736de098f1dbea4fdc36917b47eeb035c4ee6e6e1a

Download | Favorite | View

Debian Linux Security Advisory 1552-1

Posted Apr 21, 2008

Authored by Debian | Site debian.org

Debian Security Advisory 1552-1 - It was discovered that the MPlayer movie player performs insufficient input sanitising on SDP session data, leading to potential execution of arbitrary code through a malformed multimedia stream.

tags | advisory, arbitrary

systems | linux, debian

advisories | CVE-2008-1558

SHA-256 | 8f580fd68f6db72ed316696a7c779cf425c03dcd6f12fa9f4cd9cd9f62eb917d

Download | Favorite | View