CVE-2009-0398
GStreamer Plug-ins 0.6.0 - Buffer Overflow in QuickTime Media File Handler
Title source: llmDescription
Array index error in the gst_qtp_trak_handler function in gst/qtdemux/qtdemux.c in GStreamer Plug-ins (aka gstreamer-plugins) 0.6.0 allows remote attackers to have an unknown impact via a crafted QuickTime media file.
References (4)
Core 4
Core References
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2009-0269.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33830
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9886
Exploit mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2009/01/29/3
Scores
EPSS
0.0319
EPSS Percentile
86.6%
Details
CWE
CWE-119
Status
published
Products (1)
gstreamer/plug-ins
0.6.0
Published
Feb 03, 2009
Tracked Since
Feb 18, 2026