Infinite Loop Denial of Service Vulnerability in FFmpeg's zlib_refill Function

Infinite Loop Denial of Service Vulnerability in FFmpeg's zlib_refill Function

CVE-2016-6881 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The zlib_refill function in libavformat/swfdec.c in FFmpeg before 3.1.3 allows remote attackers to cause an infinite loop denial of service via a crafted SWF file.

Learn more about our Web Application Penetration Testing UK.