Description
Multiple buffer overflows in asf_http_request of MPlayer before 0.92 allows remote attackers to execute arbitrary code via an ASX header with a long hostname.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Otero Hernan · textremotelinux
https://www.exploit-db.com/exploits/23186
References (5)
Core 5
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=106460912721618&w=2
Various Sources x_refsource_confirm
http://www.mplayerhq.hu/homepage/design6/news.html
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=106485005213109&w=2
Vendor Advisory vendor-advisory
x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000760
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=106454257221455&w=2
Scores
EPSS
0.1035
EPSS Percentile
93.3%
Details
Status
published
Products (6)
mplayer/mplayer
0.90
mplayer/mplayer
0.90_pre
mplayer/mplayer
0.90_rc
mplayer/mplayer
0.90_rc4
mplayer/mplayer
0.91
mplayer/mplayer
1.0_pre1
Published
Nov 17, 2003
Tracked Since
Feb 18, 2026