← back
CVE-2009-4639

CVE-2009-4639

EPSS 3.0%
The av_rescale_rnd function in the AVI demuxer in FFmpeg 0.5 allows remote attackers to cause a denial of service (crash) via a crafted AVI file that triggers a divide-by-zero error.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://scarybeastsecurity.blogspot.com/2009/09/patching-ffmpeg-into-shape.htmlhttp://secunia.com/advisories/36805http://secunia.com/advisories/39482https://roundup.ffmpeg.org/roundup/ffmpeg/issue1240https://roundup.ffmpeg.org/roundup/ffmpeg/issue1245http://www.mandriva.com/security/advisories?name=MDVSA-2011:059http://www.mandriva.com/security/advisories?name=MDVSA-2011:060http://www.mandriva.com/security/advisories?name=MDVSA-2011:061http://www.mandriva.com/security/advisories?name=MDVSA-2011:088http://www.mandriva.com/security/advisories?name=MDVSA-2011:112http://www.securityfocus.com/bid/36465http://www.ubuntu.com/usn/USN-931-1