Unrated severityNVD Advisory· Published May 4, 2004· Updated Apr 16, 2026
CVE-2004-0386
CVE-2004-0386
Description
Buffer overflow in the HTTP parser for MPlayer 1.0pre3 and earlier, 0.90, and 0.91 allows remote attackers to execute arbitrary code via a long Location header.
Affected products
17cpe:2.3:a:mplayer:mplayer:0.90:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:mplayer:mplayer:0.90:*:*:*:*:*:*:*
- cpe:2.3:a:mplayer:mplayer:0.90_pre:*:*:*:*:*:*:*
- cpe:2.3:a:mplayer:mplayer:0.90_rc:*:*:*:*:*:*:*
- cpe:2.3:a:mplayer:mplayer:0.91:*:*:*:*:*:*:*
- cpe:2.3:a:mplayer:mplayer:1.0_pre1:*:*:*:*:*:*:*
- cpe:2.3:a:mplayer:mplayer:1.0_pre2:*:*:*:*:*:*:*
- cpe:2.3:a:mplayer:mplayer:1.0_pre3:*:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:0.5:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:o:gentoo:linux:0.5:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:0.7:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.1a:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.2:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.4:rc1:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.4:rc2:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.4:rc3:*:*:*:*:*:*
cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:mandrakesoft:mandrake_linux:9.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- secunia.com/advisories/11259nvdPatchVendor Advisory
- security.gentoo.org/glsa/glsa-200403-13.xmlnvdPatchVendor Advisory
- www.kb.cert.org/vuls/id/723910nvdPatchThird Party AdvisoryUS Government Resource
- www.securityfocus.com/archive/1/359025nvdPatchVendor Advisory
- www.securityfocus.com/bid/10008nvdExploitPatch
- marc.infonvd
- www.mandriva.com/security/advisoriesnvd
- www.mplayerhq.hu/homepage/design6/news.htmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/15675nvd
News mentions
0No linked articles in our index yet.