CVE-2016-10192

high-risk
Published 2017-02-09

Heap-based buffer overflow in ffserver.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote attackers to execute arbitrary code by leveraging failure to check chunk size.

Do I need to act?

~
5.5% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
+
Fix available
Upgrade to: a5d25faa3f4b18dac737fdb35d0dd68eb0dc2156
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (14)

Affected Vendors

Ffmpeg

References (10)

Mailing List http://www.openwall.com/lists/oss-security/2017/01/31/12
Mailing List http://www.openwall.com/lists/oss-security/2017/02/02/1
Third Party Advisory http://www.securityfocus.com/bid/95991
Release Notes https://ffmpeg.org/security.html
Patch https://github.com/FFmpeg/FFmpeg/commit/a5d25faa3f4b18dac737fdb35d0dd68eb0dc2156
Mailing List http://www.openwall.com/lists/oss-security/2017/01/31/12
Mailing List http://www.openwall.com/lists/oss-security/2017/02/02/1
Third Party Advisory http://www.securityfocus.com/bid/95991
Release Notes https://ffmpeg.org/security.html
Patch https://github.com/FFmpeg/FFmpeg/commit/a5d25faa3f4b18dac737fdb35d0dd68eb0dc2156
58
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 8/34 · Low
Exposure 18/34 · Moderate