Summary
| Detail | |||
|---|---|---|---|
| Vendor | Matroska | First view | 2017-11-09 |
| Product | Mkvalidator | Last view | 2017-11-09 |
| Version | Type | Application | |
| Update | |||
| Edition | |||
| Language | |||
| Sofware Edition | |||
| Target Software | |||
| Target Hardware | |||
| Other | |||
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
| CPE Name | Affected CVE |
|---|---|
| cpe:2.3:a:matroska:mkvalidator:0.5.1:*:*:*:*:*:*:* | 8 |
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 6.5 | 2017-11-09 | CVE-2017-12802 | The EBML_IntegerValue function in ebmlnumber.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file. |
| 6.5 | 2017-11-09 | CVE-2017-12801 | The UpdateDataSize function in ebmlmaster.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file. |
| 6.5 | 2017-11-09 | CVE-2017-12800 | The EBML_FindNextElement function in ebmlmain.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (Null pointer dereference and application crash) via a crafted mkv file. |
| 6.5 | 2017-11-09 | CVE-2017-12783 | The ReadDataFloat function in ebmlnumber.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file. |
| 6.5 | 2017-11-09 | CVE-2017-12782 | The ReadData function in ebmlmaster.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file. |
| 6.5 | 2017-11-09 | CVE-2017-12781 | The EBML_BufferToID function in ebmlelement.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (Null pointer dereference and application crash) via a crafted mkv file. |
| 6.5 | 2017-11-09 | CVE-2017-12780 | The ReadData function in ebmlstring.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (invalid free and application crash) via a crafted mkv file. |
| 6.5 | 2017-11-09 | CVE-2017-12779 | The Node_GetData function in corec/corec/node/node.c in mkvalidator 0.5.1 allows remote attackers to cause a denial of service (Null pointer dereference and application crash) via a crafted mkv file. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 50% (4) | CWE-20 | Improper Input Validation |
| 37% (3) | CWE-476 | NULL Pointer Dereference |
| 12% (1) | CWE-416 | Use After Free |
