Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-fjy3-bfzh-7beu
Summary
Multiple vulnerabilities have been found in MPlayer and the bundled
    FFmpeg, the worst of which may lead to the execution of arbitrary code.
Aliases
0
alias CVE-2011-3625
Fixed_packages
0
url pkg:deb/debian/mplayer@2:1.0~rc4.dfsg1%2Bsvn33713-2?distro=trixie
purl pkg:deb/debian/mplayer@2:1.0~rc4.dfsg1%2Bsvn33713-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@2:1.0~rc4.dfsg1%252Bsvn33713-2%3Fdistro=trixie
1
url pkg:deb/debian/mplayer@2:1.0~rc4.dfsg1%2Bsvn34540-1%2Bdeb7u1
purl pkg:deb/debian/mplayer@2:1.0~rc4.dfsg1%2Bsvn34540-1%2Bdeb7u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4jd9-pt54-1bag
1
vulnerability VCID-8uk8-jxh7-k7aa
2
vulnerability VCID-9tg7-9r5m-dkgn
3
vulnerability VCID-9vx1-3zb9-5bf1
4
vulnerability VCID-e178-xa31-h3c4
5
vulnerability VCID-g1k8-4mbb-fyew
6
vulnerability VCID-h9ks-v96k-wkf7
7
vulnerability VCID-m5db-wq6e-gqeu
8
vulnerability VCID-pfcp-7vj5-rqef
9
vulnerability VCID-tff5-wrpr-hbe1
10
vulnerability VCID-vnmz-rcby-n3gs
11
vulnerability VCID-xxgu-jjrs-pkaz
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@2:1.0~rc4.dfsg1%252Bsvn34540-1%252Bdeb7u1
2
url pkg:deb/debian/mplayer@2:1.4%2Bds1-1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/mplayer@2:1.4%2Bds1-1%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4f83-6dmk-rybu
1
vulnerability VCID-kyv5-fhuz-n7f1
2
vulnerability VCID-z3dv-rb28-kycj
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@2:1.4%252Bds1-1%252Bdeb11u1%3Fdistro=trixie
3
url pkg:deb/debian/mplayer@2:1.5%2Bsvn38408-1?distro=trixie
purl pkg:deb/debian/mplayer@2:1.5%2Bsvn38408-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@2:1.5%252Bsvn38408-1%3Fdistro=trixie
4
url pkg:deb/debian/mplayer@2:1.5%2Bsvn38674-2?distro=trixie
purl pkg:deb/debian/mplayer@2:1.5%2Bsvn38674-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@2:1.5%252Bsvn38674-2%3Fdistro=trixie
5
url pkg:deb/debian/mplayer@2:1.5%2Bsvn38681-1?distro=trixie
purl pkg:deb/debian/mplayer@2:1.5%2Bsvn38681-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@2:1.5%252Bsvn38681-1%3Fdistro=trixie
6
url pkg:ebuild/media-video/mplayer@1.1-r1
purl pkg:ebuild/media-video/mplayer@1.1-r1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/media-video/mplayer@1.1-r1
Affected_packages
0
url pkg:deb/debian/mplayer@1.0~rc1-12etch
purl pkg:deb/debian/mplayer@1.0~rc1-12etch
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1228-m28x-bkbm
1
vulnerability VCID-1dp9-jbnu-abcm
2
vulnerability VCID-2ddg-c99t-9ye1
3
vulnerability VCID-38xc-8rtk-qfes
4
vulnerability VCID-4jd9-pt54-1bag
5
vulnerability VCID-8uk8-jxh7-k7aa
6
vulnerability VCID-9tg7-9r5m-dkgn
7
vulnerability VCID-9vx1-3zb9-5bf1
8
vulnerability VCID-bv1x-tr6m-qke1
9
vulnerability VCID-e178-xa31-h3c4
10
vulnerability VCID-fjy3-bfzh-7beu
11
vulnerability VCID-fw24-pxsc-7bek
12
vulnerability VCID-g1k8-4mbb-fyew
13
vulnerability VCID-gaa2-bekm-6bbt
14
vulnerability VCID-gxnr-jbzt-cffq
15
vulnerability VCID-h9ks-v96k-wkf7
16
vulnerability VCID-hujx-y363-e3cg
17
vulnerability VCID-j7wp-941h-p3fc
18
vulnerability VCID-m5db-wq6e-gqeu
19
vulnerability VCID-pbr8-afjj-pbdq
20
vulnerability VCID-pbz2-w6vz-cqhx
21
vulnerability VCID-pfcp-7vj5-rqef
22
vulnerability VCID-pxrz-2835-dfhm
23
vulnerability VCID-q7u2-mhac-r7fp
24
vulnerability VCID-r4rz-8ey9-fqb4
25
vulnerability VCID-sgm1-d98g-nff9
26
vulnerability VCID-tff5-wrpr-hbe1
27
vulnerability VCID-tteq-u99e-ayg4
28
vulnerability VCID-vnmz-rcby-n3gs
29
vulnerability VCID-xfdf-djbw-3yht
30
vulnerability VCID-xxgu-jjrs-pkaz
31
vulnerability VCID-ybgy-yct3-6fba
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@1.0~rc1-12etch
1
url pkg:deb/debian/mplayer@1.0~rc1-12etch7
purl pkg:deb/debian/mplayer@1.0~rc1-12etch7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1228-m28x-bkbm
1
vulnerability VCID-1dp9-jbnu-abcm
2
vulnerability VCID-2ddg-c99t-9ye1
3
vulnerability VCID-38xc-8rtk-qfes
4
vulnerability VCID-4jd9-pt54-1bag
5
vulnerability VCID-8uk8-jxh7-k7aa
6
vulnerability VCID-9tg7-9r5m-dkgn
7
vulnerability VCID-9vx1-3zb9-5bf1
8
vulnerability VCID-bv1x-tr6m-qke1
9
vulnerability VCID-e178-xa31-h3c4
10
vulnerability VCID-fjy3-bfzh-7beu
11
vulnerability VCID-fw24-pxsc-7bek
12
vulnerability VCID-g1k8-4mbb-fyew
13
vulnerability VCID-gaa2-bekm-6bbt
14
vulnerability VCID-gxnr-jbzt-cffq
15
vulnerability VCID-h9ks-v96k-wkf7
16
vulnerability VCID-hujx-y363-e3cg
17
vulnerability VCID-j7wp-941h-p3fc
18
vulnerability VCID-m5db-wq6e-gqeu
19
vulnerability VCID-pbr8-afjj-pbdq
20
vulnerability VCID-pbz2-w6vz-cqhx
21
vulnerability VCID-pfcp-7vj5-rqef
22
vulnerability VCID-pxrz-2835-dfhm
23
vulnerability VCID-q7u2-mhac-r7fp
24
vulnerability VCID-r4rz-8ey9-fqb4
25
vulnerability VCID-sgm1-d98g-nff9
26
vulnerability VCID-tff5-wrpr-hbe1
27
vulnerability VCID-tteq-u99e-ayg4
28
vulnerability VCID-vnmz-rcby-n3gs
29
vulnerability VCID-xfdf-djbw-3yht
30
vulnerability VCID-xxgu-jjrs-pkaz
31
vulnerability VCID-ybgy-yct3-6fba
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@1.0~rc1-12etch7
2
url pkg:deb/debian/mplayer@1.0~rc2-17%2Blenny3.2
purl pkg:deb/debian/mplayer@1.0~rc2-17%2Blenny3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1228-m28x-bkbm
1
vulnerability VCID-4jd9-pt54-1bag
2
vulnerability VCID-8uk8-jxh7-k7aa
3
vulnerability VCID-9tg7-9r5m-dkgn
4
vulnerability VCID-9vx1-3zb9-5bf1
5
vulnerability VCID-e178-xa31-h3c4
6
vulnerability VCID-fjy3-bfzh-7beu
7
vulnerability VCID-fw24-pxsc-7bek
8
vulnerability VCID-g1k8-4mbb-fyew
9
vulnerability VCID-gxnr-jbzt-cffq
10
vulnerability VCID-h9ks-v96k-wkf7
11
vulnerability VCID-j7wp-941h-p3fc
12
vulnerability VCID-m5db-wq6e-gqeu
13
vulnerability VCID-pfcp-7vj5-rqef
14
vulnerability VCID-tff5-wrpr-hbe1
15
vulnerability VCID-tteq-u99e-ayg4
16
vulnerability VCID-vnmz-rcby-n3gs
17
vulnerability VCID-xxgu-jjrs-pkaz
18
vulnerability VCID-ybgy-yct3-6fba
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@1.0~rc2-17%252Blenny3.2
3
url pkg:deb/debian/mplayer@2:1.0~rc3%2B%2Bfinal.dfsg1-1
purl pkg:deb/debian/mplayer@2:1.0~rc3%2B%2Bfinal.dfsg1-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4jd9-pt54-1bag
1
vulnerability VCID-8uk8-jxh7-k7aa
2
vulnerability VCID-9tg7-9r5m-dkgn
3
vulnerability VCID-9vx1-3zb9-5bf1
4
vulnerability VCID-e178-xa31-h3c4
5
vulnerability VCID-fjy3-bfzh-7beu
6
vulnerability VCID-g1k8-4mbb-fyew
7
vulnerability VCID-h9ks-v96k-wkf7
8
vulnerability VCID-m5db-wq6e-gqeu
9
vulnerability VCID-pfcp-7vj5-rqef
10
vulnerability VCID-tff5-wrpr-hbe1
11
vulnerability VCID-vnmz-rcby-n3gs
12
vulnerability VCID-xxgu-jjrs-pkaz
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@2:1.0~rc3%252B%252Bfinal.dfsg1-1
References
0
reference_url http://git.mplayer2.org/mplayer2/commit/?id=27b88a09c5319deb62221b8cd0ecc14cd1136e4a
reference_id
reference_type
scores
url http://git.mplayer2.org/mplayer2/commit/?id=27b88a09c5319deb62221b8cd0ecc14cd1136e4a
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-3625
reference_id
reference_type
scores
0
value 0.68101
scoring_system epss
scoring_elements 0.98612
published_at 2026-05-05T12:55:00Z
1
value 0.68101
scoring_system epss
scoring_elements 0.98582
published_at 2026-04-01T12:55:00Z
2
value 0.68101
scoring_system epss
scoring_elements 0.98584
published_at 2026-04-02T12:55:00Z
3
value 0.68101
scoring_system epss
scoring_elements 0.98587
published_at 2026-04-04T12:55:00Z
4
value 0.68101
scoring_system epss
scoring_elements 0.98589
published_at 2026-04-07T12:55:00Z
5
value 0.68101
scoring_system epss
scoring_elements 0.98591
published_at 2026-04-08T12:55:00Z
6
value 0.68101
scoring_system epss
scoring_elements 0.98592
published_at 2026-04-09T12:55:00Z
7
value 0.68101
scoring_system epss
scoring_elements 0.98595
published_at 2026-04-12T12:55:00Z
8
value 0.68101
scoring_system epss
scoring_elements 0.98597
published_at 2026-04-13T12:55:00Z
9
value 0.68101
scoring_system epss
scoring_elements 0.98602
published_at 2026-04-21T12:55:00Z
10
value 0.68101
scoring_system epss
scoring_elements 0.98603
published_at 2026-04-18T12:55:00Z
11
value 0.68101
scoring_system epss
scoring_elements 0.98606
published_at 2026-04-24T12:55:00Z
12
value 0.68101
scoring_system epss
scoring_elements 0.98607
published_at 2026-04-26T12:55:00Z
13
value 0.68101
scoring_system epss
scoring_elements 0.98608
published_at 2026-04-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-3625
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3625
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3625
3
reference_url http://secunia.com/advisories/55486
reference_id
reference_type
scores
url http://secunia.com/advisories/55486
4
reference_url http://security.gentoo.org/glsa/glsa-201310-13.xml
reference_id
reference_type
scores
url http://security.gentoo.org/glsa/glsa-201310-13.xml
5
reference_url https://labs.mwrinfosecurity.com/system/assets/149/original/mwri_mplayer-sami-subtitles_2011-08-12.pdf
reference_id
reference_type
scores
url https://labs.mwrinfosecurity.com/system/assets/149/original/mwri_mplayer-sami-subtitles_2011-08-12.pdf
6
reference_url http://www.openwall.com/lists/oss-security/2011/10/18/12
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2011/10/18/12
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=645987
reference_id 645987
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=645987
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mplayer2:mplayer2:-:*:*:*:*:*:*:*
reference_id cpe:2.3:a:mplayer2:mplayer2:-:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mplayer2:mplayer2:-:*:*:*:*:*:*:*
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ricardo_villalba:smplayer:0.6.9:*:*:*:*:*:*:*
reference_id cpe:2.3:a:ricardo_villalba:smplayer:0.6.9:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ricardo_villalba:smplayer:0.6.9:*:*:*:*:*:*:*
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2011-3625
reference_id CVE-2011-3625
reference_type
scores
0
value 9.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:C/I:C/A:C
url https://nvd.nist.gov/vuln/detail/CVE-2011-3625
11
reference_url https://security.gentoo.org/glsa/201310-13
reference_id GLSA-201310-13
reference_type
scores
url https://security.gentoo.org/glsa/201310-13
12
reference_url http://labs.mwrinfosecurity.com/files/Advisories/mwri_mplayer-sami-subtitles_2011-08-12.pdf
reference_id OSVDB-74604;CVE-2011-3625
reference_type exploit
scores
url http://labs.mwrinfosecurity.com/files/Advisories/mwri_mplayer-sami-subtitles_2011-08-12.pdf
13
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/18954.rb
reference_id OSVDB-74604;CVE-2011-3625
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/18954.rb
Weaknesses
0
cwe_id 119
name Improper Restriction of Operations within the Bounds of a Memory Buffer
description The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.
Exploits
0
date_added null
description 
This module exploits a stack-based buffer overflow found in the handling
          of SAMI subtitles files in MPlayer SVN Versions before 33471. It currently
          targets SMPlayer 0.6.8, which is distributed with a vulnerable version of MPlayer.

          The overflow is triggered when an unsuspecting victim opens a movie file first,
          followed by loading the malicious SAMI subtitles file from the GUI. Or, it can also
          be done from the console with the MPlayer "-sub" option.
required_action null
due_date null
notes 
Reliability:
  - unknown-reliability
Stability:
  - unknown-stability
SideEffects:
  - unknown-side-effects
known_ransomware_campaign_use false
source_date_published 2011-05-19
exploit_type null
platform Windows
source_date_updated null
data_source Metasploit
source_url https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/windows/fileformat/mplayer_sami_bof.rb
1
date_added 2012-05-30
description MPlayer - '.SAMI' Subtitle File Buffer Overflow (Metasploit)
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2012-05-30
exploit_type local
platform windows
source_date_updated 2012-05-30
data_source Exploit-DB
source_url http://labs.mwrinfosecurity.com/files/Advisories/mwri_mplayer-sami-subtitles_2011-08-12.pdf
Severity_range_score9.3 - 9.3
Exploitability2.0
Weighted_severity8.4
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-fjy3-bfzh-7beu