Unrated severityNVD Advisory· Published Mar 30, 2006· Updated Apr 16, 2026
CVE-2006-1502
CVE-2006-1502
Description
Multiple integer overflows in MPlayer 1.0pre7try2 allow remote attackers to cause a denial of service and trigger heap-based buffer overflows via (1) a certain ASF file handled by asfheader.c that causes the asf_descrambling function to be passed a negative integer after the conversion from a char to an int or (2) an AVI file with a crafted wLongsPerEntry or nEntriesInUse value in the indx chunk, which is handled in aviheader.c.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
17- secunia.com/advisories/19418nvdVendor Advisory
- www.xfocus.org/advisories/200603/11.htmlnvdVendor Advisory
- lists.grok.org.uk/pipermail/full-disclosure/2006-March/044615.htmlnvd
- secunia.com/advisories/19565nvd
- secunia.com/advisories/19919nvd
- securityreason.com/securityalert/532nvd
- securityreason.com/securityalert/647nvd
- securitytracker.com/idnvd
- www.gentoo.org/security/en/glsa/glsa-200605-01.xmlnvd
- www.mandriva.com/security/advisoriesnvd
- www.osvdb.org/24246nvd
- www.osvdb.org/24247nvd
- www.securityfocus.com/archive/1/429251/100/0/threadednvd
- www.securityfocus.com/bid/17295nvd
- www.vupen.com/english/advisories/2006/1156nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/25513nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/25514nvd
News mentions
0No linked articles in our index yet.