Intrusion Prevention

FFmpeg.Mov.Read.Keys.Integer.Overflow

Description

This indicates an attack attempt against an Integer Overflow vulnerability in FFmpeg.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted media file. A remote unauthenticated attacker may be able to exploit this to execute arbitrary code, via a crafted media file.

Affected Products

FFmpeg Project Team FFmpeg prior to 3.0.4
FFmpeg Project Team FFmpeg prior to 3.1.4
FFmpeg Project Team FFmpeg prior to 3.2

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.
https://www.ffmpeg.org/security.html

CVE References

CVE-2016-5199