Think you have a false positive on this rule?

Sid 1-46481

Message

FILE-MULTIMEDIA Apple QuickTime movie file keys atom integer overflow attempt

Summary

Impact

CVE-2016-5199:

CVSS base score 8.8

CVSS impact score 5.9

CVSS exploitability score 2.8

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Detailed information

CVE-2016-5199: An off by one error resulting in an allocation of zero size in FFmpeg in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 for Windows, and 54.0.2840.100 for Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted video file.

Affected systems

  • google chrome 54.0.2840.87

Ease of attack

CVE-2016-5199:

Access Vector

Access Complexity

Authentication

False positives

False negatives

Corrective action

Upgrade to the latest non-affected version of the software.

Apply the appropriate vendor supplied patches.

Contributors

Additional References

  • ffmpeg.org/pipermail/ffmpeg-cvslog/2016-September/101971.html