FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a malformed WMV file.Referenceshttp://www.debian.org/security/2011/dsa-2306http://www.mandriva.com/security/advisories?name=MDVSA-2011:061http://www.ubuntu.com/usn/usn-1104-1/http://ffmpeg.mplayerhq.hu/
