Array Index Error in GStreamer Plug-ins Affects Remote Media Handling
CVE-2009-0398

Currently unrated

Key Information:

Vendor: Gstreamer
Status: Plug-ins
Vendor: CVE Published:; 3 February 2009

What is CVE-2009-0398?

The GStreamer Plug-ins contain an array index error within the gst_qtp_trak_handler function, located in the qtdemux component. This vulnerability can be exploited by remote attackers through the use of specially crafted QuickTime media files, potentially leading to unintended impacts on systems utilizing affected versions.

References

http://www.redhat.com/support/errata/RHSA-2009-0269.html

vendor-advisoryx_refsource_REDHAT

http://secunia.com/advisories/33830

third-party-advisoryx_refsource_SECUNIA

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 3, 2009
Vulnerability Reserved
Feb 2, 2009

JSON

Gstreamer

What is CVE-2009-0398?

References

Timeline