OpenPHT v1.8.0 / FFmpeg v2.8.11 / AVI GAB2 Struct Vulnerability
FFmpeg v2.8.11 used in OpenPHT v1.8.0. How can we upgrade this? There is a GAB2 AVI vulnerability in this ffmpeg version. The attached file can be used to generate attack files. "python gen_avi.py /etc/passwd HackAVI.avi.mp4". The resulting files need to be uploaded for transcoding & contents of the target file can be seen on the screen in the video.