CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-12800

The EBML_FindNextElement function in ebmlmain.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (Null pointer dereference and application crash) via a crafted mkv file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.024

EPSS Ranking 82.0%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

http://packetstormsecurity.com/files/144902/mkvalidator-0.5.1-Denial-Of-Service.html
http://seclists.org/fulldisclosure/2017/Nov/19
https://github.com/Matroska-Org/foundation-source/issues/24
http://packetstormsecurity.com/files/144902/mkvalidator-0.5.1-Denial-Of-Service.html
http://seclists.org/fulldisclosure/2017/Nov/19
https://github.com/Matroska-Org/foundation-source/issues/24

Products affected by CVE-2017-12800

Matroska » Libebml2 » Version: N/A

cpe:2.3:a:matroska:libebml2:-
Matroska » Mkclean » Version: 0.8.9

cpe:2.3:a:matroska:mkclean:0.8.9
Matroska » Mkvalidator » Version: 0.5.1

cpe:2.3:a:matroska:mkvalidator:0.5.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-12800

Products

Pricing

Contact Us