Welcome to our forums! Please take a few moments to read through our Community Guidelines (also conveniently linked in the header at the top of each page). There, you'll find guidelines on conduct, tips on getting the help you may be searching for, and more!

OpenPHT v1.8.0 / FFmpeg v2.8.11 / AVI GAB2 Struct Vulnerability

bornlibra23bornlibra23 Members Posts: 62 ✭✭
edited August 9 in OpenPHT

FFmpeg v2.8.11 used in OpenPHT v1.8.0. How can we upgrade this? There is a GAB2 AVI vulnerability in this ffmpeg version. The attached file can be used to generate attack files. "python gen_avi.py /etc/passwd HackAVI.avi.mp4". The resulting files need to be uploaded for transcoding & contents of the target file can be seen on the screen in the video.

Answers

Sign In or Register to comment.