CVE-2003-0835

MPlayer < 0.92 - Remote Code Execution via ASX Header Hostname Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-0835. PoCs published by Otero Hernan.

AI-analyzed exploit summary This exploit leverages a buffer overflow vulnerability in MPlayer's handling of malformed ASX file headers. The long 'ref href' attribute in the ASX file triggers the overflow in asf_http_request(), potentially leading to remote code execution.

Description

Multiple buffer overflows in asf_http_request of MPlayer before 0.92 allows remote attackers to execute arbitrary code via an ASX header with a long hostname.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Otero Hernan · textremotelinux
https://www.exploit-db.com/exploits/23186

This exploit leverages a buffer overflow vulnerability in MPlayer's handling of malformed ASX file headers. The long 'ref href' attribute in the ASX file triggers the overflow in asf_http_request(), potentially leading to remote code execution.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: MPlayer (versions affected by CVE-2003-0835)
No auth needed
Prerequisites: Victim must open the malicious ASX file with a vulnerable version of MPlayer
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=106460912721618&w=2
Various Sources x_refsource_confirm
http://www.mplayerhq.hu/homepage/design6/news.html
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=106485005213109&w=2
Vendor Advisory vendor-advisory x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000760
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=106454257221455&w=2

Scores

EPSS 0.0484
EPSS Percentile 91.0%

Details

Status published
Products (6)
mplayer/mplayer 0.90
mplayer/mplayer 0.90_pre
mplayer/mplayer 0.90_rc
mplayer/mplayer 0.90_rc4
mplayer/mplayer 0.91
mplayer/mplayer 1.0_pre1
Published Nov 17, 2003
Tracked Since Feb 18, 2026