Lucene search
HistoryMay 12, 2008 - 8:20 p.m.
CVE-2008-2147
cve-2008-2147
videolan vlc
untrusted search path vulnerability
arbitrary code execution
nvd
6.8 Medium
AI Score
Confidence
Low
4.6 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory.
Affected configurations
Node
videolanvlcRange≤0.8.6
ORvideolanvlcMatch0.4.6
ORvideolanvlcMatch0.5.0
ORvideolanvlcMatch0.5.1
ORvideolanvlcMatch0.5.1a
ORvideolanvlcMatch0.5.2
ORvideolanvlcMatch0.5.3
ORvideolanvlcMatch0.6.0
ORvideolanvlcMatch0.6.1
ORvideolanvlcMatch0.6.2
ORvideolanvlcMatch0.7.0
ORvideolanvlcMatch0.7.1
ORvideolanvlcMatch0.7.2
ORvideolanvlcMatch0.8.0
ORvideolanvlcMatch0.8.1
ORvideolanvlcMatch0.8.2
ORvideolanvlcMatch0.8.4
ORvideolanvlcMatch0.8.4a
ORvideolanvlcMatch0.8.5
ORvideolanvlcMatch0.8.6a
ORvideolanvlcMatch0.8.6b
ORvideolanvlcMatch0.8.6c
ORvideolanvlcMatch0.8.6d
ORvideolanvlcMatch0.8.6e
Related
debiancve
debiancve
CVE-2008-2147
2008-05-12 20:20:00
nvd
nvd
CVE-2008-2147
2008-05-12 20:20:00
prion
prion
Design/Logic Flaw
2008-05-12 20:20:00
ubuntucve
ubuntucve
CVE-2008-2147
2008-05-12 00:00:00
cvelist
cvelist
CVE-2008-2147
2008-05-12 20:00:00
gentoo
gentoo
VLC: Multiple vulnerabilities
2008-07-31 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200807-13 (vlc)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200807-13 (vlc)
2008-09-24 00:00:00
Debian Security Advisory DSA 1819-1 (vlc)
2009-06-23 00:00:00
nessus
nessus
GLSA-200807-13 : VLC: Multiple vulnerabilities
2008-08-01 00:00:00
Debian DSA-1819-1 : vlc - several vulnerabilities
2009-06-19 00:00:00
osv
osv
vlc - several vulnerabilities
2009-06-18 00:00:00
debian
debian
[SECURITY] [DSA 1819-1] New vlc packages fix several vulnerabilities
2009-06-18 13:13:47
6.8 Medium
AI Score
Confidence
Low
4.6 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2008-2147