Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-3623
HistoryDec 26, 2014 - 8:59 p.m.

CVE-2011-3623

2014-12-2620:59:08
CWE-119
[email protected]
web.nvd.nist.gov
21
cve-2011-3623
videolan
vlc media player
buffer overflow
remote code execution
asf file
avi file
mp4 file

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.103 Low

EPSS

Percentile

95.0%

JSON

Multiple stack-based buffer overflows in VideoLAN VLC media player before 1.0.2 allow remote attackers to execute arbitrary code via (1) a crafted ASF file, related to the ASF_ObjectDumpDebug function in modules/demux/asf/libasf.c; (2) a crafted AVI file, related to the AVI_ChunkDumpDebug_level function in modules/demux/avi/libavi.c; or (3) a crafted MP4 file, related to the __MP4_BoxDumpStructure function in modules/demux/mp4/libmp4.c.

Affected configurations

NVD
Node
videolanvlc_media_playerRange1.0.1
OR
videolanvlc_media_playerMatch0.5.0
OR
videolanvlc_media_playerMatch0.5.1
OR
videolanvlc_media_playerMatch0.5.2
OR
videolanvlc_media_playerMatch0.5.3
OR
videolanvlc_media_playerMatch0.6.0
OR
videolanvlc_media_playerMatch0.6.1
OR
videolanvlc_media_playerMatch0.6.2
OR
videolanvlc_media_playerMatch0.7.0
OR
videolanvlc_media_playerMatch0.7.1
OR
videolanvlc_media_playerMatch0.7.2
OR
videolanvlc_media_playerMatch0.8.0
OR
videolanvlc_media_playerMatch0.8.1
OR
videolanvlc_media_playerMatch0.8.2
OR
videolanvlc_media_playerMatch0.8.4
OR
videolanvlc_media_playerMatch0.8.4a
OR
videolanvlc_media_playerMatch0.8.5
OR
videolanvlc_media_playerMatch0.8.6
OR
videolanvlc_media_playerMatch0.8.6a
OR
videolanvlc_media_playerMatch0.8.6b
OR
videolanvlc_media_playerMatch0.8.6c
OR
videolanvlc_media_playerMatch0.8.6d
OR
videolanvlc_media_playerMatch0.8.6e
OR
videolanvlc_media_playerMatch0.8.6f
OR
videolanvlc_media_playerMatch0.8.6g
OR
videolanvlc_media_playerMatch0.8.6h
OR
videolanvlc_media_playerMatch0.8.6i
OR
videolanvlc_media_playerMatch0.8.1337
OR
videolanvlc_media_playerMatch0.9.0
OR
videolanvlc_media_playerMatch0.9.1
OR
videolanvlc_media_playerMatch0.9.2
OR
videolanvlc_media_playerMatch0.9.3
OR
videolanvlc_media_playerMatch0.9.4
OR
videolanvlc_media_playerMatch0.9.5
OR
videolanvlc_media_playerMatch0.9.6
OR
videolanvlc_media_playerMatch0.9.8a
OR
videolanvlc_media_playerMatch0.9.9
OR
videolanvlc_media_playerMatch0.9.9a
OR
videolanvlc_media_playerMatch0.9.10
OR
videolanvlc_media_playerMatch1.0.0

Related

openvas 4
nvd 1
debiancve 1
prion 1
cvelist 1
ubuntucve 1
nessus 2
gentoo 1
openvas
openvas
VLC Media Player Multiple Buffer Overflow Vulnerabilities-01 (Jan 2015) - Mac OS X
2015-01-05 00:00:00
VLC Media Player Multiple Buffer Overflow Vulnerabilities-01 (Jan 2015) - Linux
2015-01-05 00:00:00
VLC Media Player Multiple Buffer Overflow Vulnerabilities-01 (Jan 2015) - Windows
2015-01-05 00:00:00
nvd
nvd
CVE-2011-3623
2014-12-26 20:59:08
debiancve
debiancve
CVE-2011-3623
2014-12-26 20:59:08
prion
prion
Stack overflow
2014-12-26 20:59:00
cvelist
cvelist
CVE-2011-3623
2014-12-26 20:00:00
ubuntucve
ubuntucve
CVE-2011-3623
2014-12-26 00:00:00
nessus
nessus
VLC Media Player < 1.0.2 Stack-based Buffer Overflow
2020-06-15 00:00:00
GLSA-201411-01 : VLC: Multiple vulnerabilities
2014-11-06 00:00:00
gentoo
gentoo
VLC: Multiple vulnerabilities
2014-11-05 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.103 Low

EPSS

Percentile

95.0%

JSON
Related for CVE-2011-3623
openvas4nvd1debiancve1prion1cvelist1ubuntucve1nessus2gentoo1