Unrated severityNVD Advisory· Published Feb 10, 2010· Updated Jun 16, 2026
CVE-2009-4631
CVE-2009-4631
Description
Off-by-one error in the VP3 decoder (vp3.c) in FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted VP3 file that triggers an out-of-bounds read and possibly memory corruption.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
7- scarybeastsecurity.blogspot.com/2009/09/patching-ffmpeg-into-shape.htmlnvdExploit
- secunia.com/advisories/36805nvd
- secunia.com/advisories/38643nvd
- www.debian.org/security/2010/dsa-2000nvd
- www.securityfocus.com/bid/36465nvd
- roundup.ffmpeg.org/roundup/ffmpeg/issue1240nvd
- roundup.ffmpeg.org/roundup/ffmpeg/issue1483nvd
News mentions
0No linked articles in our index yet.