icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

MPlayer Crafted Media File Integer Overflow

Medium

Synopsis

The remote host is vulnerable to an integer overflow

Description

The remote host is using a version of MPlayer, a multimedia video and audio application. This version of MPlayer is vulnerable to an integer overflow due to a lack of content parsing. An attacker exploiting this flaw would need to craft a malicious media file and then convince a local user to download and play the file within MPlayer. Successful exploitation would result in arbitrary code being executed locally.

Solution

Upgrade or patch according to vendor recommendations.