CVE-2010-3275
7.2 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.938 High
EPSS
Percentile
99.1%
libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a βdangling pointer vulnerability.β
References
secunia.com/advisories/43826
securityreason.com/securityalert/8162
securitytracker.com/id?1025250
www.coresecurity.com/content/vlc-vulnerabilities-amv-nsv-files
www.debian.org/security/2011/dsa-2211
www.exploit-db.com/exploits/17048
www.metasploit.com/modules/exploit/windows/browser/vlc_amv
www.osvdb.org/71277
www.securityfocus.com/archive/1/517150/100/0/threaded
www.securityfocus.com/bid/47012
www.videolan.org/vlc/releases/1.1.8.html
www.vupen.com/english/advisories/2011/0759
exchange.xforce.ibmcloud.com/vulnerabilities/66259
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14718
Social References
More
Related
7.2 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.938 High
EPSS
Percentile
99.1%