Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-pxrz-2835-dfhm
SummaryHeap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a .avi file with certain large "indx truck size" and nEntriesInuse values, and a certain wLongsPerEntry value.
Aliases
0
alias CVE-2007-4938
Fixed_packages
0
url pkg:deb/debian/mplayer@1.0~rc1-16.1?distro=trixie
purl pkg:deb/debian/mplayer@1.0~rc1-16.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@1.0~rc1-16.1%3Fdistro=trixie
1
url pkg:deb/debian/mplayer@1.0~rc2-17%2Blenny3.2
purl pkg:deb/debian/mplayer@1.0~rc2-17%2Blenny3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1228-m28x-bkbm
1
vulnerability VCID-4jd9-pt54-1bag
2
vulnerability VCID-8uk8-jxh7-k7aa
3
vulnerability VCID-9tg7-9r5m-dkgn
4
vulnerability VCID-9vx1-3zb9-5bf1
5
vulnerability VCID-e178-xa31-h3c4
6
vulnerability VCID-fjy3-bfzh-7beu
7
vulnerability VCID-fw24-pxsc-7bek
8
vulnerability VCID-g1k8-4mbb-fyew
9
vulnerability VCID-gxnr-jbzt-cffq
10
vulnerability VCID-h9ks-v96k-wkf7
11
vulnerability VCID-j7wp-941h-p3fc
12
vulnerability VCID-m5db-wq6e-gqeu
13
vulnerability VCID-pfcp-7vj5-rqef
14
vulnerability VCID-tff5-wrpr-hbe1
15
vulnerability VCID-tteq-u99e-ayg4
16
vulnerability VCID-vnmz-rcby-n3gs
17
vulnerability VCID-xxgu-jjrs-pkaz
18
vulnerability VCID-ybgy-yct3-6fba
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@1.0~rc2-17%252Blenny3.2
2
url pkg:deb/debian/mplayer@2:1.4%2Bds1-1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/mplayer@2:1.4%2Bds1-1%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4f83-6dmk-rybu
1
vulnerability VCID-kyv5-fhuz-n7f1
2
vulnerability VCID-z3dv-rb28-kycj
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@2:1.4%252Bds1-1%252Bdeb11u1%3Fdistro=trixie
3
url pkg:deb/debian/mplayer@2:1.5%2Bsvn38408-1?distro=trixie
purl pkg:deb/debian/mplayer@2:1.5%2Bsvn38408-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@2:1.5%252Bsvn38408-1%3Fdistro=trixie
4
url pkg:deb/debian/mplayer@2:1.5%2Bsvn38674-2?distro=trixie
purl pkg:deb/debian/mplayer@2:1.5%2Bsvn38674-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@2:1.5%252Bsvn38674-2%3Fdistro=trixie
5
url pkg:deb/debian/mplayer@2:1.5%2Bsvn38681-1?distro=trixie
purl pkg:deb/debian/mplayer@2:1.5%2Bsvn38681-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@2:1.5%252Bsvn38681-1%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/mplayer@1.0~rc1-12etch
purl pkg:deb/debian/mplayer@1.0~rc1-12etch
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1228-m28x-bkbm
1
vulnerability VCID-1dp9-jbnu-abcm
2
vulnerability VCID-2ddg-c99t-9ye1
3
vulnerability VCID-38xc-8rtk-qfes
4
vulnerability VCID-4jd9-pt54-1bag
5
vulnerability VCID-8uk8-jxh7-k7aa
6
vulnerability VCID-9tg7-9r5m-dkgn
7
vulnerability VCID-9vx1-3zb9-5bf1
8
vulnerability VCID-bv1x-tr6m-qke1
9
vulnerability VCID-e178-xa31-h3c4
10
vulnerability VCID-fjy3-bfzh-7beu
11
vulnerability VCID-fw24-pxsc-7bek
12
vulnerability VCID-g1k8-4mbb-fyew
13
vulnerability VCID-gaa2-bekm-6bbt
14
vulnerability VCID-gxnr-jbzt-cffq
15
vulnerability VCID-h9ks-v96k-wkf7
16
vulnerability VCID-hujx-y363-e3cg
17
vulnerability VCID-j7wp-941h-p3fc
18
vulnerability VCID-m5db-wq6e-gqeu
19
vulnerability VCID-pbr8-afjj-pbdq
20
vulnerability VCID-pbz2-w6vz-cqhx
21
vulnerability VCID-pfcp-7vj5-rqef
22
vulnerability VCID-pxrz-2835-dfhm
23
vulnerability VCID-q7u2-mhac-r7fp
24
vulnerability VCID-r4rz-8ey9-fqb4
25
vulnerability VCID-sgm1-d98g-nff9
26
vulnerability VCID-tff5-wrpr-hbe1
27
vulnerability VCID-tteq-u99e-ayg4
28
vulnerability VCID-vnmz-rcby-n3gs
29
vulnerability VCID-xfdf-djbw-3yht
30
vulnerability VCID-xxgu-jjrs-pkaz
31
vulnerability VCID-ybgy-yct3-6fba
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@1.0~rc1-12etch
1
url pkg:deb/debian/mplayer@1.0~rc1-12etch7
purl pkg:deb/debian/mplayer@1.0~rc1-12etch7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1228-m28x-bkbm
1
vulnerability VCID-1dp9-jbnu-abcm
2
vulnerability VCID-2ddg-c99t-9ye1
3
vulnerability VCID-38xc-8rtk-qfes
4
vulnerability VCID-4jd9-pt54-1bag
5
vulnerability VCID-8uk8-jxh7-k7aa
6
vulnerability VCID-9tg7-9r5m-dkgn
7
vulnerability VCID-9vx1-3zb9-5bf1
8
vulnerability VCID-bv1x-tr6m-qke1
9
vulnerability VCID-e178-xa31-h3c4
10
vulnerability VCID-fjy3-bfzh-7beu
11
vulnerability VCID-fw24-pxsc-7bek
12
vulnerability VCID-g1k8-4mbb-fyew
13
vulnerability VCID-gaa2-bekm-6bbt
14
vulnerability VCID-gxnr-jbzt-cffq
15
vulnerability VCID-h9ks-v96k-wkf7
16
vulnerability VCID-hujx-y363-e3cg
17
vulnerability VCID-j7wp-941h-p3fc
18
vulnerability VCID-m5db-wq6e-gqeu
19
vulnerability VCID-pbr8-afjj-pbdq
20
vulnerability VCID-pbz2-w6vz-cqhx
21
vulnerability VCID-pfcp-7vj5-rqef
22
vulnerability VCID-pxrz-2835-dfhm
23
vulnerability VCID-q7u2-mhac-r7fp
24
vulnerability VCID-r4rz-8ey9-fqb4
25
vulnerability VCID-sgm1-d98g-nff9
26
vulnerability VCID-tff5-wrpr-hbe1
27
vulnerability VCID-tteq-u99e-ayg4
28
vulnerability VCID-vnmz-rcby-n3gs
29
vulnerability VCID-xfdf-djbw-3yht
30
vulnerability VCID-xxgu-jjrs-pkaz
31
vulnerability VCID-ybgy-yct3-6fba
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mplayer@1.0~rc1-12etch7
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-4938
reference_id
reference_type
scores
0
value 0.09968
scoring_system epss
scoring_elements 0.93011
published_at 2026-04-01T12:55:00Z
1
value 0.09968
scoring_system epss
scoring_elements 0.9302
published_at 2026-04-02T12:55:00Z
2
value 0.09968
scoring_system epss
scoring_elements 0.93024
published_at 2026-04-04T12:55:00Z
3
value 0.09968
scoring_system epss
scoring_elements 0.93023
published_at 2026-04-07T12:55:00Z
4
value 0.09968
scoring_system epss
scoring_elements 0.93031
published_at 2026-04-08T12:55:00Z
5
value 0.09968
scoring_system epss
scoring_elements 0.93036
published_at 2026-04-09T12:55:00Z
6
value 0.09968
scoring_system epss
scoring_elements 0.93041
published_at 2026-04-11T12:55:00Z
7
value 0.09968
scoring_system epss
scoring_elements 0.93038
published_at 2026-04-12T12:55:00Z
8
value 0.09968
scoring_system epss
scoring_elements 0.9304
published_at 2026-04-13T12:55:00Z
9
value 0.09968
scoring_system epss
scoring_elements 0.9305
published_at 2026-04-16T12:55:00Z
10
value 0.09968
scoring_system epss
scoring_elements 0.93053
published_at 2026-04-18T12:55:00Z
11
value 0.09968
scoring_system epss
scoring_elements 0.9306
published_at 2026-04-21T12:55:00Z
12
value 0.09968
scoring_system epss
scoring_elements 0.93067
published_at 2026-05-05T12:55:00Z
13
value 0.09968
scoring_system epss
scoring_elements 0.93062
published_at 2026-04-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-4938
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4938
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4938
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=443478
reference_id 443478
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=443478
3
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/30578.txt
reference_id CVE-2007-4938;OSVDB-45940
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/30578.txt
4
reference_url https://www.securityfocus.com/bid/25648/info
reference_id CVE-2007-4938;OSVDB-45940
reference_type exploit
scores
url https://www.securityfocus.com/bid/25648/info
Weaknesses
Exploits
0
date_added 2007-09-12
description MPlayer 1.0 - AVIHeader.C Heap Buffer Overflow
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2007-09-12
exploit_type dos
platform linux
source_date_updated 2016-11-24
data_source Exploit-DB
source_url https://www.securityfocus.com/bid/25648/info
Severity_range_scorenull
Exploitability2.0
Weighted_severity0.1
Risk_score0.2
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-pxrz-2835-dfhm