CVE-2007-4938
Mplayer - Memory Corruption
Title source: ruleDescription
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry value.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Code Audit Labs · textdoslinux
https://www.exploit-db.com/exploits/30578
References (8)
Scores
EPSS
0.0997
EPSS Percentile
92.9%
Classification
CWE
CWE-119
Status
draft
Affected Products (2)
mplayer/mplayer
sgi/irix
Timeline
Published
Sep 18, 2007
Tracked Since
Feb 18, 2026