CVE-2009-0385

Published: Feb 2, 2009Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference.

Affected (9)

Products: Ffmpeg: Ffmpeg · Debian: Debian Linux · Canonical: Ubuntu Linux · +1 more

Show all products

Ffmpeg: Ffmpeg · Debian: Debian Linux · Canonical: Ubuntu Linux · Fedoraproject: Fedora

1 product

1 product

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ffmpeg Ffmpeg	Before 0.6.3

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 4.0
Debian Debian Linux	Version 5.0
Debian Debian Linux	Version 6.0

Configuration C

3 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 7.10
Canonical Ubuntu Linux	Version 8.04
Canonical Ubuntu Linux	Version 8.10

Configuration D

2 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 10
Fedoraproject Fedora	Version 9

References (44)

http://git.ffmpeg.org/?p=ffmpeg%3Ba=commitdiff%3Bh=72e715fb798f2cb79fd24a6d2eaeafb7c6eeda17

Source: cve@mitre.org

http://osvdb.org/51643

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/33711

Source: cve@mitre.org

Third Party Advisory

http://secunia.com/advisories/34296

Source: cve@mitre.org

Third Party Advisory

http://secunia.com/advisories/34385

Source: cve@mitre.org

Third Party Advisory

http://secunia.com/advisories/34712

Source: cve@mitre.org

Third Party Advisory

http://secunia.com/advisories/34845

Source: cve@mitre.org

Third Party Advisory

http://secunia.com/advisories/34905

Source: cve@mitre.org

Third Party Advisory

http://security.gentoo.org/glsa/glsa-200903-33.xml

Source: cve@mitre.org

Third Party Advisory

http://svn.mplayerhq.hu/ffmpeg/trunk/libavformat/4xm.c?r1=16838&r2=16846&pathrev=16846

Source: cve@mitre.org

Broken Link

http://svn.mplayerhq.hu/ffmpeg?view=rev&revision=16846

Source: cve@mitre.org

Broken Link

http://www.debian.org/security/2009/dsa-1781

Source: cve@mitre.org

Third Party Advisory

http://www.debian.org/security/2009/dsa-1782

Source: cve@mitre.org

Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2009:297

Source: cve@mitre.org

Third Party Advisory

http://www.securityfocus.com/archive/1/500514/100/0/threaded

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/33502

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.trapkit.de/advisories/TKADV2009-004.txt

Source: cve@mitre.org

Third Party Advisory

http://www.ubuntu.com/usn/USN-734-1

Source: cve@mitre.org

Third Party Advisory

http://www.vupen.com/english/advisories/2009/0277

Source: cve@mitre.org

Third Party Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/48330

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00210.html

Source: cve@mitre.org

Third Party Advisory

https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00215.html

Source: cve@mitre.org

Third Party Advisory

http://git.ffmpeg.org/?p=ffmpeg%3Ba=commitdiff%3Bh=72e715fb798f2cb79fd24a6d2eaeafb7c6eeda17