RTSP: MPlayer StreamCount RTSP Integer Overflow
This signature detects attempts to exploit a known vulnerability in MPlayer. A successful attack can lead to a integer overflow and arbitrary remote code execution within the context of the target program.
Extended Description
MPlayer is prone to an interger-overflow vulnerability because it fails to perform adequate checks on externally supplied input. Attackers can leverage this vulnerability to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
Affected Products
Debian linux
References
BugTraq: 28851
CVE: CVE-2008-1558
URL: http://downloads.securityfocus.com/vulnerabilities/exploits/bid28851.pl
Short Name
RTSP:OVERFLOW:STREAMCOUNT
Severity
Major
Recommended
False
Recommended Action
Drop
Category
RTSP
Keywords
CVE-2008-1558 Integer MPlayer Overflow RTSP StreamCount bid:28851
Release Date
05/06/2008
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/554
False Positive
Unknown
Vendors
Mandriva
Debian
Gentoo
Mplayer
CVSS Score
10.0