CVE-2004-1309

EPSS 5.5%

Published: 1/10/2005Modified: 4/28/2026

Also known as:DEBIAN-CVE-2004-1309

Description

Heap-based buffer overflow in the demux_open_bmp function in demux_bmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap (BMP) file containing a large biClrUsed field.

Affected packages (1)

Debian/mplayerfrom 0, < 1.0~pre6a-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2004-1309