GStreamer Good Plug-ins Incomplete Fix CVE-2016-9808 Buffer Overflow Vulnerability

GStreamer Good Plug-ins is prone to a buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it to an insufficiently sized buffer.

Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause denial-of-service conditions.

Note : This issue is the result of an incomplete fix for the CVE-2016-9635 described in BID 94499 (GStreamer Good Plug-ins Multiple Buffer Overflow Vulnerabilities).

Versions prior to GStreamer Good Plug-ins 1.10.2 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus