Unrated severityNVD Advisory· Published Jun 7, 2007· Updated Apr 23, 2026
CVE-2007-2948
CVE-2007-2948
Description
Multiple stack-based buffer overflows in stream/stream_cddb.c in MPlayer before 1.0rc1try3 allow remote attackers to execute arbitrary code via a CDDB entry with a long (1) album title or (2) category.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
17- lists.mplayerhq.hu/pipermail/mplayer-announce/2007-June/000066.htmlnvdPatch
- secunia.com/advisories/24302nvdPatchVendor Advisory
- osvdb.org/36991nvd
- secunia.com/advisories/25713nvd
- secunia.com/advisories/25940nvd
- secunia.com/advisories/26083nvd
- secunia.com/advisories/26207nvd
- secunia.com/secunia_research/2007-55/nvd
- security.gentoo.org/glsa/glsa-200707-07.xmlnvd
- svn.mplayerhq.hu/mplayer/trunk/stream/stream_cddb.cnvd
- www.debian.org/security/2007/dsa-1313nvd
- www.mandriva.com/security/advisoriesnvd
- www.mplayerhq.hu/design7/news.htmlnvd
- www.novell.com/linux/security/advisories/2007_14_sr.htmlnvd
- www.securityfocus.com/bid/24339nvd
- www.vupen.com/english/advisories/2007/2080nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/34749nvd
News mentions
0No linked articles in our index yet.