Lucene search

[email protected]CVE-2011-2588

HistoryJul 27, 2011 - 2:55 a.m.

CVE-2011-2588

2011-07-2702:55:02

CWE-119

[email protected]

web.nvd.nist.gov

cve-2011-2588

avi demuxer

videolan vlc media player

buffer overflow

denial of service

remote code execution

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.1 High

AI Score

Confidence

High

0.056 Low

EPSS

Percentile

93.3%

JSON

Heap-based buffer overflow in the AVI_ChunkRead_strf function in libavi.c in the AVI demuxer in VideoLAN VLC media player before 1.1.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted AVI media file.

Affected configurations

NVD

Node

videolanvlc_media_playerRange≤1.1.10.1

videolanvlc_media_playerMatch0.1.99b

videolanvlc_media_playerMatch0.1.99e

videolanvlc_media_playerMatch0.1.99f

videolanvlc_media_playerMatch0.1.99g

videolanvlc_media_playerMatch0.1.99h

videolanvlc_media_playerMatch0.1.99i

videolanvlc_media_playerMatch0.2.0

videolanvlc_media_playerMatch0.2.60

videolanvlc_media_playerMatch0.2.61

videolanvlc_media_playerMatch0.2.62

videolanvlc_media_playerMatch0.2.63

videolanvlc_media_playerMatch0.2.70

videolanvlc_media_playerMatch0.2.71

videolanvlc_media_playerMatch0.2.72

videolanvlc_media_playerMatch0.2.73

videolanvlc_media_playerMatch0.2.80

videolanvlc_media_playerMatch0.2.81

videolanvlc_media_playerMatch0.2.82

videolanvlc_media_playerMatch0.2.83

videolanvlc_media_playerMatch0.2.90

videolanvlc_media_playerMatch0.2.91

videolanvlc_media_playerMatch0.2.92

videolanvlc_media_playerMatch0.3.0

videolanvlc_media_playerMatch0.3.1

videolanvlc_media_playerMatch0.4.0

videolanvlc_media_playerMatch0.4.1

videolanvlc_media_playerMatch0.4.2

videolanvlc_media_playerMatch0.4.3

videolanvlc_media_playerMatch0.4.4

videolanvlc_media_playerMatch0.4.5

videolanvlc_media_playerMatch0.4.6

videolanvlc_media_playerMatch0.5.0

videolanvlc_media_playerMatch0.5.1

videolanvlc_media_playerMatch0.5.2

videolanvlc_media_playerMatch0.5.3

videolanvlc_media_playerMatch0.6.0

videolanvlc_media_playerMatch0.6.1

videolanvlc_media_playerMatch0.6.2

videolanvlc_media_playerMatch0.7.0

videolanvlc_media_playerMatch0.7.2

videolanvlc_media_playerMatch0.8.0

videolanvlc_media_playerMatch0.8.1

videolanvlc_media_playerMatch0.8.2

videolanvlc_media_playerMatch0.8.4

videolanvlc_media_playerMatch0.8.5

videolanvlc_media_playerMatch0.8.6

videolanvlc_media_playerMatch0.9.2

videolanvlc_media_playerMatch0.9.3

videolanvlc_media_playerMatch0.9.4

videolanvlc_media_playerMatch0.9.5

videolanvlc_media_playerMatch0.9.6

videolanvlc_media_playerMatch0.9.8a

videolanvlc_media_playerMatch0.9.9

videolanvlc_media_playerMatch0.9.10

videolanvlc_media_playerMatch1.0.0

videolanvlc_media_playerMatch1.0.1

videolanvlc_media_playerMatch1.0.2

videolanvlc_media_playerMatch1.0.3

videolanvlc_media_playerMatch1.0.4

videolanvlc_media_playerMatch1.0.5

videolanvlc_media_playerMatch1.0.6

videolanvlc_media_playerMatch1.1.0

videolanvlc_media_playerMatch1.1.1

videolanvlc_media_playerMatch1.1.2

videolanvlc_media_playerMatch1.1.3

videolanvlc_media_playerMatch1.1.4

videolanvlc_media_playerMatch1.1.5

videolanvlc_media_playerMatch1.1.6

videolanvlc_media_playerMatch1.1.6.1

videolanvlc_media_playerMatch1.1.7

videolanvlc_media_playerMatch1.1.8

videolanvlc_media_playerMatch1.1.9

videolanvlc_media_playerMatch1.1.10

CPENameOperatorVersion
videolan:vlc_media_playervideolan vlc media playerle1.1.10.1
videolan:vlc_media_playervideolan vlc media playereq0.1.99b
videolan:vlc_media_playervideolan vlc media playereq0.1.99e
videolan:vlc_media_playervideolan vlc media playereq0.1.99f
videolan:vlc_media_playervideolan vlc media playereq0.1.99g
videolan:vlc_media_playervideolan vlc media playereq0.1.99h
videolan:vlc_media_playervideolan vlc media playereq0.1.99i
videolan:vlc_media_playervideolan vlc media playereq0.2.0
videolan:vlc_media_playervideolan vlc media playereq0.2.60
videolan:vlc_media_playervideolan vlc media playereq0.2.61

CPE	Name	Operator	Version
videolan:vlc_media_player	videolan vlc media player	le	1.1.10.1
videolan:vlc_media_player	videolan vlc media player	eq	0.1.99b
videolan:vlc_media_player	videolan vlc media player	eq	0.1.99e
videolan:vlc_media_player	videolan vlc media player	eq	0.1.99f
videolan:vlc_media_player	videolan vlc media player	eq	0.1.99g
videolan:vlc_media_player	videolan vlc media player	eq	0.1.99h
videolan:vlc_media_player	videolan vlc media player	eq	0.1.99i
videolan:vlc_media_player	videolan vlc media player	eq	0.2.0
videolan:vlc_media_player	videolan vlc media player	eq	0.2.60
videolan:vlc_media_player	videolan vlc media player	eq	0.2.61