OSVDB ID: 43740

Title: MPlayer stream/realrtsp/sdpplin.c sdpplin_parse Function StreamCount Variable Remote Overflow

Info

Disclosure

Mar 25, 2008

Discovery

Unknown

Dates

Exploit

Mar 25, 2008

Solution

Unknown

Description

A remote overflow exists in MPlayer. MPlayer fails to sanitize the 'StreamCount' variable resulting in an integer overflow. With a specially crafted request, an attacker can execute arbitrary code, resulting in a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Solution Unknown
Exploit: Exploit Available

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

MPlayer Project

MPlayer

1.0rc2

References

FrSIRT Advisory: ADV-2008-0997
Milw0rm: 5307
Other Advisory URL: http://lists.debian.org/debian-security-announce/2008/msg00123.html
http://www.gentoo.org/security/en/glsa/glsa-200805-22.xml
Secunia Advisory ID: 29515 29921 30412
CVE ID: 2008-1558 (see also: NVD)

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218