In association with heise online

30 September 2008, 09:21

Critical hole in Mplayer

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

MPlayer, the free movie player, has a critical vulnerability according to an advisory from OCert. The issue is related to MPlayer's playback of RealPlayer streams; the demuxer code in demux_real.c has three integer underflows which can be manipulated by a crafted video file to make the stream_read function overwrite arbitrary amounts of memory, which in turn can lead to a crash or a heap overflow exploit.

The issue affects all versions of MPlayer, up to and including the latest MPlayer 1.0_RC2, but there has been no official update to MPlayer yet. OCert have made available a patch for MPlayer for users and distributions who can patch and build from MPlayer source code.

See also:

(djwm)

Print Version | Send by email | Permalink: http://h-online.com/-737483
 


  • July's Community Calendar





The H Open

The H Security

The H Developer

The H Internet Toolkit