← back
CVE-2016-10192

CVE-2016-10192

EPSS 6.2%
Heap-based buffer overflow in ffserver.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote attackers to execute arbitrary code by leveraging failure to check chunk size.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ffmpeg.org/security.htmlhttps://github.com/FFmpeg/FFmpeg/commit/a5d25faa3f4b18dac737fdb35d0dd68eb0dc2156http://www.openwall.com/lists/oss-security/2017/01/31/12http://www.openwall.com/lists/oss-security/2017/02/02/1http://www.securityfocus.com/bid/95991