CVE-2008-4201 - Vulnerability Details - OpenCVE

Heap-based buffer overflow in the decodeMP4file function (frontend/main.c) in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MPEG-4 (MP4) file.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Audiocoding	Faad2

Configuration 1 [-]

OR	cpe:2.3:a:audiocoding:faad2::::::::
	cpe:2.3:a:audiocoding:faad2:1.1:::::::*
	cpe:2.3:a:audiocoding:faad2:2.0:rc1::::::
	cpe:2.3:a:audiocoding:faad2:2.0:rc2::::::
	cpe:2.3:a:audiocoding:faad2:2.0:rc3::::::
	cpe:2.3:a:audiocoding:faad2:2.5:::::::*

No data.

References

Link	Providers
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499899
http://bugs.gentoo.org/attachment.cgi?id=166174&action=view
http://bugs.gentoo.org/show_bug.cgi?id=238445
http://osvdb.org/48349
http://secunia.com/advisories/32006
http://secunia.com/advisories/32661
http://security.gentoo.org/glsa/glsa-200811-03.xml
http://www.audiocoding.com/archive.html
http://www.audiocoding.com/patch/main_overflow.diff
http://www.openwall.com/lists/oss-security/2008/09/24/6
http://www.securityfocus.com/bid/31219
http://www.vupen.com/english/advisories/2008/2601

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-09-24T10:00:00

Updated: 2024-08-07T10:08:34.938Z

Reserved: 2008-09-23T00:00:00

Link: CVE-2008-4201

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2008-09-24T11:42:25.360

Modified: 2025-04-09T00:30:58.490

Link: CVE-2008-4201

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-09-23T00:00:00", "descriptions": [{"lang": "en", "value": "Heap-based buffer overflow in the decodeMP4file function (frontend/main.c) in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MPEG-4 (MP4) file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2008-11-15T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "GLSA-200811-03", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-200811-03.xml"}, {"name": "[oss-security] 20080924 Re: CVE id request: fraud2", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2008/09/24/6"}, {"name": "ADV-2008-2601", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/2601"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499899"}, {"name": "32006", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/32006"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.audiocoding.com/patch/main_overflow.diff"}, {"name": "31219", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/31219"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://bugs.gentoo.org/show_bug.cgi?id=238445"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.audiocoding.com/archive.html"}, {"tags": ["x_refsource_MISC"], "url": "http://bugs.gentoo.org/attachment.cgi?id=166174&action=view"}, {"name": "32661", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/32661"}, {"name": "48349", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/48349"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-4201", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Heap-based buffer overflow in the decodeMP4file function (frontend/main.c) in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MPEG-4 (MP4) file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "GLSA-200811-03", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200811-03.xml"}, {"name": "[oss-security] 20080924 Re: CVE id request: fraud2", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2008/09/24/6"}, {"name": "ADV-2008-2601", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/2601"}, {"name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499899", "refsource": "CONFIRM", "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499899"}, {"name": "32006", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/32006"}, {"name": "http://www.audiocoding.com/patch/main_overflow.diff", "refsource": "CONFIRM", "url": "http://www.audiocoding.com/patch/main_overflow.diff"}, {"name": "31219", "refsource": "BID", "url": "http://www.securityfocus.com/bid/31219"}, {"name": "http://bugs.gentoo.org/show_bug.cgi?id=238445", "refsource": "CONFIRM", "url": "http://bugs.gentoo.org/show_bug.cgi?id=238445"}, {"name": "http://www.audiocoding.com/archive.html", "refsource": "CONFIRM", "url": "http://www.audiocoding.com/archive.html"}, {"name": "http://bugs.gentoo.org/attachment.cgi?id=166174&action=view", "refsource": "MISC", "url": "http://bugs.gentoo.org/attachment.cgi?id=166174&action=view"}, {"name": "32661", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/32661"}, {"name": "48349", "refsource": "OSVDB", "url": "http://osvdb.org/48349"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T10:08:34.938Z"}, "title": "CVE Program Container", "references": [{"name": "GLSA-200811-03", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://security.gentoo.org/glsa/glsa-200811-03.xml"}, {"name": "[oss-security] 20080924 Re: CVE id request: fraud2", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2008/09/24/6"}, {"name": "ADV-2008-2601", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2008/2601"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499899"}, {"name": "32006", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/32006"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.audiocoding.com/patch/main_overflow.diff"}, {"name": "31219", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/31219"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://bugs.gentoo.org/show_bug.cgi?id=238445"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.audiocoding.com/archive.html"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://bugs.gentoo.org/attachment.cgi?id=166174&action=view"}, {"name": "32661", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/32661"}, {"name": "48349", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/48349"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-4201", "datePublished": "2008-09-24T10:00:00", "dateReserved": "2008-09-23T00:00:00", "dateUpdated": "2024-08-07T10:08:34.938Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:audiocoding:faad2:*:*:*:*:*:*:*:*", "matchCriteriaId": "F6542405-0980-402E-B1CC-FE82C90EC581", "versionEndIncluding": "2.6.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:audiocoding:faad2:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "B215E265-DCA1-455E-B1F7-80D2AB113846", "vulnerable": true}, {"criteria": "cpe:2.3:a:audiocoding:faad2:2.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "BC87E82A-17B6-4B95-95F6-B3ABD2AC2D80", "vulnerable": true}, {"criteria": "cpe:2.3:a:audiocoding:faad2:2.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "CC378FBC-832A-429D-A1C9-67B9276FBE6D", "vulnerable": true}, {"criteria": "cpe:2.3:a:audiocoding:faad2:2.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "AC80062B-B5F1-43F4-8165-952B3AF162B3", "vulnerable": true}, {"criteria": "cpe:2.3:a:audiocoding:faad2:2.5:*:*:*:*:*:*:*", "matchCriteriaId": "BDDB427F-A661-4F1E-8EFC-536883A061DD", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Heap-based buffer overflow in the decodeMP4file function (frontend/main.c) in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MPEG-4 (MP4) file."}, {"lang": "es", "value": "Un desbordamiento de b\u00fafer en la regi\u00f3n heap de la memoria en la funci\u00f3n decodeMP4file (archivo frontend/main.c) en FAAD2 versi\u00f3n 2.6.1 y anteriores, permite a los atacantes remotos causar una denegaci\u00f3n de servicio (bloqueo) y posiblemente ejecutar c\u00f3digo arbitrario por medio de un archivo MPEG-4 (MP4) creado."}], "id": "CVE-2008-4201", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2008-09-24T11:42:25.360", "references": [{"source": "cve@mitre.org", "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499899"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://bugs.gentoo.org/attachment.cgi?id=166174&action=view"}, {"source": "cve@mitre.org", "url": "http://bugs.gentoo.org/show_bug.cgi?id=238445"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/48349"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/32006"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/32661"}, {"source": "cve@mitre.org", "url": "http://security.gentoo.org/glsa/glsa-200811-03.xml"}, {"source": "cve@mitre.org", "url": "http://www.audiocoding.com/archive.html"}, {"source": "cve@mitre.org", "url": "http://www.audiocoding.com/patch/main_overflow.diff"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2008/09/24/6"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/31219"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2008/2601"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499899"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://bugs.gentoo.org/attachment.cgi?id=166174&action=view"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://bugs.gentoo.org/show_bug.cgi?id=238445"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/48349"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/32006"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/32661"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://security.gentoo.org/glsa/glsa-200811-03.xml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.audiocoding.com/archive.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.audiocoding.com/patch/main_overflow.diff"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2008/09/24/6"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/31219"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2008/2601"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}