VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Sep 29, 2008· Updated Apr 23, 2026

CVE-2008-3827

CVE-2008-3827

Description

Multiple integer underflows in the Real demuxer (demux_real.c) in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service (process termination) and possibly execute arbitrary code via a crafted video file that causes the stream_read function to read or write arbitrary memory.

Affected products

21
  • MPlayer/Mplayer21 versions
    cpe:2.3:a:mplayer:mplayer:*:*:*:*:*:*:*:*+ 20 more
    • cpe:2.3:a:mplayer:mplayer:*:*:*:*:*:*:*:*range: <=1.0_rc2
    • cpe:2.3:a:mplayer:mplayer:0.90:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:0.90_pre:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:0.90_rc:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:0.90_rc4:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:0.91:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:0.92:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:0.92.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:0.92_cvs:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_pre1:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_pre2:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_pre3:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_pre3try2:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_pre4:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_pre5:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_pre5try1:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_pre5try2:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_pre6:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_pre7:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_pre7try2:*:*:*:*:*:*:*
    • cpe:2.3:a:mplayer:mplayer:1.0_rc1:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

11

News mentions

0

No linked articles in our index yet.