« List of all CVEs

CVE-2008-4201

Published: 9/24/2008 Last updated: 8/7/2024 Reserved: 9/23/2008

Heap-based buffer overflow in the decodeMP4file function (frontend/main.c) in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MPEG-4 (MP4) file.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (2)

conf-faad faad

Products affected (1)

Product Vendor Version
n/a n/a <=4.4.0

References (24)