V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
CVE-2017-5848
DEB
Medium

The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a deni…

CVSS
5.5
Medium
EPSS
0.04
p90
Published
2017-01-01
Updated
2017-01-01
Description

The gst_ps_demux_parse_psm function in gst/mpegdemux/gstmpegdemux.c in gst-plugins-bad in GStreamer allows remote attackers to cause a denial of service (invalid memory read and crash) via vectors involving PSM parsing.

Tags · CWE
CWE-120
CWE-125
CAPEC-8
CAPEC-9
CAPEC-10
CAPEC-14
CAPEC-24
CAPEC-42
CAPEC-44
CAPEC-45
CAPEC-46
CAPEC-47
CAPEC-67
CAPEC-92
CAPEC-100
CAPEC-540
Affected products
Clutter-gst2Gnome-video-effectsGst-plugins-bad0.10Gst-plugins-bad0.10Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0Gst-plugins-bad1.0
CVSS vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Timeline
2017-01-01
Published
2017-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: L
Local (L)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: N
None (N)
User Interaction
UI: R
Required (R)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: N
None (N)
Integrity Impact
I: N
None (N)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.044 · p90
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Debian
Debian LinuxGst-plugins-bad1.0Gst-plugins-bad0.10
Canonical
Gst-plugins-bad0.10Gst-plugins-bad1.0
Red Hat
Enterprise Linux DesktopEnterprise Linux ServerEnterprise Linux WorkstationEnterprise Linux Server AusEnterprise Linux EusEnterprise Linux Server TusGstreamer1-plugins-baseGstreamer1-plugins-goodGstreamer1-plugins-bad-freeGstreamer-plugins-good+5
Gstreamer
Gstreamer
ProductVendorStatus
clutter-gst2Tracked
gnome-video-effectsTracked
gst-plugins-bad0.10Tracked
gst-plugins-bad0.10Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
gst-plugins-bad1.0Tracked
Showing first 20 of 41
Source databases
DEB
CVE
RED
UBU