FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mplayer -- multiple vulnerabilities

Affected packages
		mplayer	<	0.99.5_5
		mplayer-esound	<	0.99.5_5
		mplayer-gtk	<	0.99.5_5
		mplayer-gtk-esound	<	0.99.5_5
		mplayer-gtk2	<	0.99.5_5
		mplayer-gtk2-esound	<	0.99.5_5
		libxine	<=	1.0.r5_3

Details

VuXML ID	85d76f02-5380-11d9-a9e7-0001020eed82
Discovery	2004-12-10
Entry	2004-12-21
Modified	2005-01-12

iDEFENSE and the MPlayer Team have found multiple vulnerabilities in MPlayer:

Potential heap overflow in Real RTSP streaming code
Potential stack overflow in MMST streaming code
Multiple buffer overflows in BMP demuxer
Potential heap overflow in pnm streaming code
Potential buffer overflow in mp3lib

These vulnerabilities could allow a remote attacker to execute arbitrary code as the user running MPlayer. The problem in the pnm streaming code also affects xine.

References

CVE Name	CVE-2004-1187
CVE Name	CVE-2004-1188
Message	IDSERV04yz5b6KZmcK80000000c@exchange.idefense.com
Message	IDSERV04FVjCRGryWtI0000000f@exchange.idefense.com
Message	IDSERV046beUzmRf6Ci00000012@exchange.idefense.com
URL	http://mplayerhq.hu/homepage/design7/news.html#mplayer10pre5try2
URL	http://www.idefense.com/application/poi/display?id=166
URL	http://www.idefense.com/application/poi/display?id=167
URL	http://www.idefense.com/application/poi/display?id=168
URL	http://xinehq.de/index.php/security/XSA-2004-6

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.