[MPlayer-dev-eng] [HOtero at lanchile.cl: RE:Mpalyer Remote buffer Overflow]
D Richard Felker III
dalias at aerifal.cx
Thu Sep 25 02:09:10 CEST 2003
On Wed, Sep 24, 2003 at 08:26:47PM +0200, gabucino at mplayerhq.hu wrote:
> MPlayer Vulnerability #2
>
> --
> Gabucino
> MPlayer Core Team
> From: "Otero, Hernan (EDS)" <HOtero at lanchile.cl>
> To: "'gabucino at mplayerhq.hu'" <gabucino at mplayerhq.hu>
> Subject: RE:Mpalyer Remote buffer Overflow
> Date: Wed, 24 Sep 2003 14:18:53 -0400
>
> This is about Mplayer, sorry the last mail was a little confuse
>
> In the source tree there is a file asf_streaming.c this file has a function
> named asf_http_request, that function has two buffer overflows, this
> overflows are in the sprintf lines.
>
>
> asf_http_request {
> char str[250];
> ....
> ...
> ..
> sprintf( str, "Host: %s:%d", server_url->hostname,
> server_url->port );
> ....
> ...
> ..
> sprintf( str, "Host: %s:%d", url->hostname, url->port );
>
> ....
> ...
> ..
> }
Fixed.
Rich
More information about the MPlayer-dev-eng
mailing list