CVE-2016-6881

CVSS 5.5 - MEDIUM

Description

The zlib_refill function in libavformat/swfdec.c in FFmpeg before 3.1.3 allows remote attackers to cause an infinite loop denial of service via a crafted SWF file.

Affected Products

Vendor	Product	Version
ffmpeg	ffmpeg	`All versions`

References

http://www.openwall.com/lists/oss-security/2016/09...

http://www.securityfocus.com/bid/93163

http://www.openwall.com/lists/oss-security/2016/09...

http://www.securityfocus.com/bid/93163

Weakness Types

CWE-399

CVE Information

CVE ID:: CVE-2016-6881
Published:: 2016-12-23
Modified:: 2026-05-06
CVSS Score:: 5.5
Severity:: MEDIUM
Vector:: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected Vendors

ffmpeg

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL