CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-3329

MEDIUM
6.8
CVSS Severity Score
EPSS Score0.0910%
EPSS Percentile38.09th
Published2007年6月21日
Last Modified2026年4月23日

Vulnerability Description

Multiple array index errors in the (1) get_intra_block, (2) get_inter_block_h263, and (3) get_inter_block_mpeg functions in src/bitstream/mbcoding.c in Xvid 1.1.2 allow remote attackers to execute arbitrary code via a crafted (a) Avi, (b) H.263, or (c) MPEG file.

Affected Platforms (CPE)

📦
Xvid

Xvid

= 1.1.2

References & Advisories

🔗 http://bugs.gentoo.org/show_bug.cgi?id=183145
🔗 http://cvs.xvid.org/cvs/viewvc.cgi/xvidcore/src/bitstream/mbcoding.c
🔗 http://cvs.xvid.org/cvs/viewvc.cgi/xvidcore/src/bitstream/mbcoding.c?r1=1.54&r2=1.55
🔗 http://osvdb.org/37728
🔗 http://secunia.com/advisories/25711
🔗 http://secunia.com/advisories/26353
🔗 http://www.gentoo.org/security/en/glsa/glsa-200708-02.xml
🔗 http://www.securityfocus.com/bid/24561

相关漏洞威胁

CVE-2009-089310.0

Multiple heap-based buffer overflows in xvidcore/src/decoder.c in the xvidcore library in Xvid before 1.2.2, as used by Windows Me...

CVE-2009-089410.0

Heap-based buffer overflow in the decoder_create function in the initialization functionality in xvidcore/src/decoder.c in Xvid be...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...