VYPR
Unrated severityNVD Advisory· Published Sep 18, 2007· Updated Jun 16, 2026

CVE-2007-4938

CVE-2007-4938

Description

Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry value.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • MPlayer/Mplayer2 versions
    cpe:2.3:a:mplayer:mplayer:1.0_rc1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:mplayer:mplayer:1.0_rc1:*:*:*:*:*:*:*
    • (no CPE)range: <=1.0rc1
  • cpe:2.3:o:sgi:irix:*:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.