Intrusion Prevention

libav.LZO.Integer.Overflow

Description

This indicates an attack attempt to exploit an Integer Overflow vulnerability in libav.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted Multimedia file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the user.

Affected Products

Libav Team libav prior to 0.8.13
Libav Team libav prior to 10.2
Libav Team libav prior to 9.14

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are unaware of any vendor supplied patch for this issue

CVE References

CVE-2014-4609