Home > Vulnerability Database > CVE-2006-4800

Mend.io Vulnerability Database

CVE-2006-4800

Date: September 14, 2006

Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and (13) tta.c. NOTE: it is likely that this is a different vulnerability than CVE-2005-4048 and CVE-2006-2802.

Severity Score

7.3

Related Resources (25)

Url: http://www.us.debian.org/security/2006/dsa-1215

Url: http://secunia.com/advisories/22180

Url: http://www.novell.com/linux/security/advisories/2006_73_mono.html

Url: http://secunia.com/advisories/22182

Url: http://secunia.com/advisories/22181

Url: http://www.ubuntu.com/usn/usn-358-1

Url: http://bugs.gentoo.org/show_bug.cgi?id=133520

Url: http://www.securityfocus.com/bid/20009

Url: http://secunia.com/advisories/22203

Url: http://secunia.com/advisories/22202

Url: http://security.gentoo.org/glsa/glsa-200609-09.xml

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4800

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:173

Url: http://secunia.com/advisories/21921

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:174

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:175

Url: https://nvd.nist.gov/vuln/detail/CVE-2006-4800

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2006:176

Url: http://secunia.com/advisories/22230

Url: http://secunia.com/advisories/23010

Url: http://secunia.com/advisories/22198

Url: http://secunia.com/advisories/22201

Url: http://secunia.com/advisories/23213

Url: http://secunia.com/advisories/22200

Url: https://www.mend.io/vulnerability-database/CVE-2006-4800

Severity Score

7.3

CVSS v3.1

Base Score:	7.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2006-4800

Date: September 14, 2006

Severity Score

Related Resources (25)

Severity Score

CVSS v3.1

CVSS v2

Do you need more information?