CVE-2011-4351
ffmpeg - several
EPSS 2.8%
Description
Buffer overflow in FFmpeg before 0.5.6, 0.6.x before 0.6.4, 0.7.x before 0.7.8, and 0.8.x before 0.8.8 allows remote attackers to execute arbitrary code via unspecified vectors.
How to fix CVE-2011-4351
To remediate CVE-2011-4351, upgrade the affected package to a fixed version below.
- Debian/ffmpeg—upgrade to 7:2.4.1-1 or later
- Debian/ffmpeg—upgrade to 4:0.5.6-3 or later
Is CVE-2011-4351 being exploited?
Low — EPSS is 2.8%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 7:2.4.1-1
- from 0, < 4:0.5.6-3