First published: Sun Jun 19 2022(Updated: )
A vulnerability was found in FFmpeg 2.0. It has been declared as problematic. Affected by this vulnerability is the function truemotion1_decode_header of the component Truemotion1 Handler. The manipulation leads to memory corruption. The attack can be launched remotely. It is recommended to apply a patch to fix this issue.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
FFmpeg FFmpeg | =2.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2014-125023 is medium with a severity value of 5.5.
CVE-2014-125023 affects FFmpeg 2.0 by exploiting a vulnerability in the function truemotion1_decode_header of the Truemotion1 Handler component, leading to memory corruption.
Yes, the attack that exploits CVE-2014-125023 can be launched remotely.
Yes, it is recommended to apply a fix to address the vulnerability in CVE-2014-125023.
The Common Weakness Enumeration (CWE) ID of CVE-2014-125023 is CWE-787 and CWE-119.