CVE-2008-0630
EPSS 7.4%
Description
Buffer overflow in url.c in MPlayer 1.0rc2 and SVN before r25823 allows remote attackers to execute arbitrary code via a crafted URL that prevents the IPv6 parsing code from setting a pointer to NULL, which causes the buffer to be reused by the unescape code.
How to fix CVE-2008-0630
To remediate CVE-2008-0630, upgrade the affected package to a fixed version below.
- Debian/mplayer—upgrade to 1.0~rc2-8 or later
Is CVE-2008-0630 being exploited?
Moderate — EPSS is 7.4%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 1.0~rc2-8