Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-1000460

EPSS 0.22% · P44
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-1000460

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
In line libavcodec/h264dec.c:500 in libav(v13_dev0), ffmpeg(n3.4), chromium(56 prior Feb 13, 2017), the return value of init_get_bits is ignored and get_ue_golomb(&gb) is called on an uninitialized get_bits context, which causes a NULL deref exception.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Libav、FFmpeg和Google Chromium 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Libav(前身是FFmpeg)是Libav团队的一套跨平台的可对音频和视频进行录制、转换的解决方案。FFmpeg是FFmpeg团队的一套可录制、转换以及流化音视频的完整解决方案。Google Chromium是美国谷歌(Google)公司开发的一款Web浏览器。 Libav v13_dev0版本、FFmpeg n3.4版本和Google Chromium 2017年1月13日之前的56版本中的libavcodec/h264dec.c文件存在安全漏洞。攻击者可利用该漏洞造成拒绝服务(无效读取)。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2017-1000460

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2017-1000460

登录查看更多情报信息。

Same Patch Batch · n/a · 2018-01-03 · 57 CVEs total

CVE-2017-1000487Plexus-utils 操作系统命令注入漏洞
CVE-2018-5087K7 AntiVirus K7FWHlpr.sys文件安全漏洞
CVE-2018-5082K7 AntiVirus K7FWHlpr.sys文件安全漏洞
CVE-2018-5085K7 AntiVirus K7FWHlpr.sys文件安全漏洞
CVE-2018-5084K7 AntiVirus K7FWHlpr.sys文件安全漏洞
CVE-2018-5083K7 AntiVirus K7FWHlpr.sys文件安全漏洞
CVE-2018-5086K7 AntiVirus K7FWHlpr.sys文件安全漏洞
CVE-2018-5074Online Ticket Booking 跨站脚本漏洞
CVE-2018-5073Online Ticket Booking 跨站请求伪造漏洞
CVE-2018-5072Online Ticket Booking 跨站脚本漏洞
CVE-2018-5075Online Ticket Booking 跨站脚本漏洞
CVE-2017-1000486Primetek Primefaces 加密问题漏洞
CVE-2017-1000485Nylas Mail Lives 安全漏洞
CVE-2017-1000484Plone 安全漏洞
CVE-2017-1000473Linux Dash 命令注入漏洞
CVE-2017-1000472POCO C++ Libraries 安全漏洞
CVE-2017-1000471EmbedThis GoAhead Webserver CGI handler 安全漏洞
CVE-2017-1000470EmbedThis GoAhead Webserver HTTP listener 数字错误漏洞
CVE-2017-1000469Cobbler add repo组件命令注入漏洞
CVE-2017-1000462BookStack 跨站脚本漏洞

Showing top 20 of 57 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2017-1000460

No comments yet

Leave a comment