CVE-2010-3276

2011-03-2816:55:00

CWE-119

[email protected]

web.nvd.nist.gov

vlc media player

vulnerability

cve-2010-3276

libdirectx_plugin.dll

nsv file

code execution

security

7.2 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.085 Low

EPSS

Percentile

94.4%

JSON

libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an NSV file.

CPENameOperatorVersion
videolan:vlc_media_playervideolan vlc media playereq1.1.3
videolan:vlc_media_playervideolan vlc media playereq0.7.2
videolan:vlc_media_playervideolan vlc media playereq0.5.0
videolan:vlc_media_playervideolan vlc media playereq0.2.62
videolan:vlc_media_playervideolan vlc media playereq0.4.0
videolan:vlc_media_playervideolan vlc media playereq0.1.99e
videolan:vlc_media_playervideolan vlc media playereq1.0.3
videolan:vlc_media_playervideolan vlc media playereq0.8.0
videolan:vlc_media_playervideolan vlc media playereq0.1.99g
videolan:vlc_media_playervideolan vlc media playereq0.2.70

CPE	Name	Operator	Version
videolan:vlc_media_player	videolan vlc media player	eq	1.1.3
videolan:vlc_media_player	videolan vlc media player	eq	0.7.2
videolan:vlc_media_player	videolan vlc media player	eq	0.5.0
videolan:vlc_media_player	videolan vlc media player	eq	0.2.62
videolan:vlc_media_player	videolan vlc media player	eq	0.4.0
videolan:vlc_media_player	videolan vlc media player	eq	0.1.99e
videolan:vlc_media_player	videolan vlc media player	eq	1.0.3
videolan:vlc_media_player	videolan vlc media player	eq	0.8.0
videolan:vlc_media_player	videolan vlc media player	eq	0.1.99g
videolan:vlc_media_player	videolan vlc media player	eq	0.2.70