CVE-2017-9608
MEDIUMFFmpeg < 3.2.6 - Denial of Service via Crafted MOV File
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2017-9608. PoCs published by LaCinquette.
AI-analyzed exploit summary This repository provides a detailed analysis and proof-of-concept for CVE-2017-9608, a null pointer dereference vulnerability in FFmpeg. It includes a Docker setup to build and test the vulnerable version of FFmpeg, along with an explanation of the vulnerability and its exploitation.
Description
The dnxhd decoder in FFmpeg before 3.2.6, and 3.3.x before 3.3.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted mov file.
Exploits (1)
This repository provides a detailed analysis and proof-of-concept for CVE-2017-9608, a null pointer dereference vulnerability in FFmpeg. It includes a Docker setup to build and test the vulnerable version of FFmpeg, along with an explanation of the vulnerability and its exploitation.
References (7)
Scores
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H