CVE-2011-2162

Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 (aka CS4.0); and Mandriva Enterprise Server 5 (aka MES5) have unknown impact and attack vectors, related to issues "originally discovered by Google Chrome developers."

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.mandriva.com/security/advisories?name=MDVSA-2011:059
http://www.mandriva.com/security/advisories?name=MDVSA-2011:060
http://www.mandriva.com/security/advisories?name=MDVSA-2011:061
http://www.mandriva.com/security/advisories?name=MDVSA-2011:062
http://www.mandriva.com/security/advisories?name=MDVSA-2011:088
http://www.mandriva.com/security/advisories?name=MDVSA-2011:089

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:ffmpeg:ffmpeg:0.4.0:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.4.2:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.4.3:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.4.4:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.4.5:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.4.6:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.4.7:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.4.8:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.4.9:pre1::::::
	cpe:2.3:a:ffmpeg:ffmpeg:0.5.1:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.5.2:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.5.3:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.5.4:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.6.1:::::::*
	cpe:2.3:a:mplayerhq:mplayer:1.0:::::::*

OR	cpe:2.3:o:mandriva:corporate_server:4.0:::::::*
	cpe:2.3:o:mandriva:enterprise_server:5:::::::*
	cpe:2.3:o:mandriva:linux:2009.0:::::::*
	cpe:2.3:o:mandriva:linux:2010.0:::::::*
	cpe:2.3:o:mandriva:linux:2010.1:::::::*

History

No history.

Information

Published : 2011-05-20 22:55

Updated : 2024-02-28 11:41

NVD link : CVE-2011-2162

Mitre link : CVE-2011-2162

CVE.ORG link : CVE-2011-2162

JSON object : View

Products Affected

mandriva

linux
enterprise_server
corporate_server

mplayerhq

mplayer

ffmpeg

ffmpeg

CWE

NVD-CWE-noinfo

{"id": "CVE-2011-2162", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-05-20T22:55:06.047", "references": [{"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:059", "source": "cve@mitre.org"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:060", "source": "cve@mitre.org"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:061", "source": "cve@mitre.org"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:062", "source": "cve@mitre.org"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:088", "source": "cve@mitre.org"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:089", "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 (aka CS4.0); and Mandriva Enterprise Server 5 (aka MES5) have unknown impact and attack vectors, related to issues \"originally discovered by Google Chrome developers.\""}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades no especificadas en FFmpeg v0.4.x hasta v0.6.x, tal como se utiliza en MPlayer v1.0 y otros productos, en Mandriva Linux v2009.0, v2010.0 y v2010.1; Corporate Server v4.0 (tambi\u00e9n conocido como CS4.0), y Mandriva Enterprise Server 5 (tambi\u00e9n conocido como MES5) tienen un impacto y vectores de ataque desconocidos, en relaci\u00f3n a las cuestiones \"originalmente descubiertas por los desarrolladores de Google Chrome\"."}], "lastModified": "2011-05-23T04:00:00.000", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "67C6C243-3ACC-49C3-80CA-D7CA8FEFF0D8"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6AE6D368-0BA6-4499-B7E1-EE16C03012E9"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "26C0F6EF-0452-4AFE-AF3E-B88F963A0938"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B4DD372-4D3B-445C-8C38-E083A3C0D4A7"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "733C03D7-2780-4D69-A98D-BCFB91D1119A"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0AEE1977-E9E0-4BFF-B33B-B083E49E51F1"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6979C17-0BC6-47D1-9B73-254D84306A96"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "204C7C05-3441-4DB0-8702-D99C8FCB381E"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.9:pre1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E1A7011-B992-4E35-B306-45772DACB23C"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "632BC7C2-FE59-47B0-885C-0EB8C74DF041"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D1AE0BF-A6FD-4EBA-BF61-07AC81EA560D"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B8FA106-FE65-4BB0-92A7-E8A5AF978A9B"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "514669DA-8D02-44CE-BE18-8783F69AE394"}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "157ABA40-6101-4E9C-A24C-84F8E23D374D"}, {"criteria": "cpe:2.3:a:mplayerhq:mplayer:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D26EEA1C-3A0B-4AD1-AFFD-01DA728F8ED8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:mandriva:corporate_server:4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "35578C7D-7F96-420A-B60E-2940F7E43E28"}, {"criteria": "cpe:2.3:o:mandriva:enterprise_server:5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95A638FF-4AF2-48E9-8977-6EC624A619EB"}, {"criteria": "cpe:2.3:o:mandriva:linux:2009.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F90D927-CBCD-4432-9C04-A5F040D8F337"}, {"criteria": "cpe:2.3:o:mandriva:linux:2010.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F31B20FC-4AC9-4F3F-ABD8-230FA89B07FE"}, {"criteria": "cpe:2.3:o:mandriva:linux:2010.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E3DD706-4A70-4F67-951B-64CDAD223F3F"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}