Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-4686
HistoryOct 22, 2008 - 6:00 p.m.

CVE-2008-4686

2008-10-2218:00:01
CWE-189
[email protected]
web.nvd.nist.gov
35
cve-2008-4686
integer overflows
ty demux plugin
videolan
vlc media player
remote code execution

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

High

0.753 High

EPSS

Percentile

98.2%

JSON

Multiple integer overflows in ty.c in the TY demux plugin (aka the TiVo demuxer) in VideoLAN VLC media player, probably 0.9.4, might allow remote attackers to execute arbitrary code via a crafted .ty file, a different vulnerability than CVE-2008-4654.

Affected configurations

NVD
Node
videolanvlc_media_playerMatch0.9.0
OR
videolanvlc_media_playerMatch0.9.1
OR
videolanvlc_media_playerMatch0.9.2
OR
videolanvlc_media_playerMatch0.9.3
OR
videolanvlc_media_playerMatch0.9.4

Related

debiancve 2
openvas 6
ubuntucve 2
cvelist 2
nvd 2
prion 2
checkpoint_advisories 1
saint 4
cve 1
packetstorm 1
nessus 1
osv 1
debian 1
debiancve
debiancve
CVE-2008-4686
2008-10-22 18:00:01
CVE-2008-4654
2008-10-22 00:11:51
openvas
openvas
VLC Media Player TY Processing BOF Vulnerability - Linux
2008-10-22 00:00:00
VLC Media Player TY Processing BOF Vulnerability (Linux)
2008-10-22 00:00:00
VLC Media Player TY Processing Buffer Overflow Vulnerability - Windows
2008-10-22 00:00:00
ubuntucve
ubuntucve
CVE-2008-4686
2008-10-22 00:00:00
CVE-2008-4654
2008-10-22 00:00:00
cvelist
cvelist
CVE-2008-4686
2008-10-22 17:00:00
CVE-2008-4654
2008-10-21 22:00:00
nvd
nvd
CVE-2008-4686
2008-10-22 18:00:01
CVE-2008-4654
2008-10-22 00:11:51
prion
prion
Integer overflow
2008-10-22 18:00:00
Stack overflow
2008-10-22 00:11:00
checkpoint_advisories
checkpoint_advisories
VideoLAN VLC Media Player TY Processing Buffer Overflow (CVE-2008-4654)
2009-10-01 00:00:00
saint
saint
VLC media player TY file parse_master buffer overflow
2008-12-04 00:00:00
VLC media player TY file parse_master buffer overflow
2008-12-04 00:00:00
VLC media player TY file parse_master buffer overflow
2008-12-04 00:00:00
cve
cve
CVE-2008-4654
2008-10-22 00:11:51
packetstorm
packetstorm
VideoLAN VLC TiVo Buffer Overflow
2009-11-26 00:00:00
nessus
nessus
Debian DSA-1819-1 : vlc - several vulnerabilities
2009-06-19 00:00:00
osv
osv
vlc - several vulnerabilities
2009-06-18 00:00:00
debian
debian
[SECURITY] [DSA 1819-1] New vlc packages fix several vulnerabilities
2009-06-18 13:13:47

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

High

0.753 High

EPSS

Percentile

98.2%

JSON
Related for CVE-2008-4686
debiancve2openvas6ubuntucve2cvelist2nvd2prion2checkpoint_advisories1saint4cve1packetstorm1nessus1osv1debian1