Lucene search

[email protected]CVE-2012-0023

HistoryOct 30, 2012 - 7:55 p.m.

CVE-2012-0023

2012-10-3019:55:03

CWE-399

[email protected]

web.nvd.nist.gov

cve-2012-0023

double free vulnerability

videolan

vlc media player

nvd

security

denial of service

remote code execution

tivo

ty file

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.041 Low

EPSS

Percentile

92.2%

JSON

Double free vulnerability in the get_chunk_header function in modules/demux/ty.c in VideoLAN VLC media player 0.9.0 through 1.1.12 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TiVo (TY) file.

Affected configurations

NVD

Node

videolanvlc_media_playerMatch0.9.0

videolanvlc_media_playerMatch0.9.1

videolanvlc_media_playerMatch0.9.2

videolanvlc_media_playerMatch0.9.3

videolanvlc_media_playerMatch0.9.4

videolanvlc_media_playerMatch0.9.5

videolanvlc_media_playerMatch0.9.6

videolanvlc_media_playerMatch0.9.8a

videolanvlc_media_playerMatch0.9.9

videolanvlc_media_playerMatch0.9.9a

videolanvlc_media_playerMatch0.9.10

videolanvlc_media_playerMatch1.0.0

videolanvlc_media_playerMatch1.0.1

videolanvlc_media_playerMatch1.0.2

videolanvlc_media_playerMatch1.0.3

videolanvlc_media_playerMatch1.0.4

videolanvlc_media_playerMatch1.0.5

videolanvlc_media_playerMatch1.0.6

videolanvlc_media_playerMatch1.1.0

videolanvlc_media_playerMatch1.1.1

videolanvlc_media_playerMatch1.1.2

videolanvlc_media_playerMatch1.1.3

videolanvlc_media_playerMatch1.1.4

videolanvlc_media_playerMatch1.1.4.1

videolanvlc_media_playerMatch1.1.5

videolanvlc_media_playerMatch1.1.6

videolanvlc_media_playerMatch1.1.6.1

videolanvlc_media_playerMatch1.1.7

videolanvlc_media_playerMatch1.1.8

videolanvlc_media_playerMatch1.1.9

videolanvlc_media_playerMatch1.1.10

videolanvlc_media_playerMatch1.1.10.1

videolanvlc_media_playerMatch1.1.11

videolanvlc_media_playerMatch1.1.12

CPENameOperatorVersion
videolan:vlc_media_playervideolan vlc media playereq0.9.0
videolan:vlc_media_playervideolan vlc media playereq0.9.1
videolan:vlc_media_playervideolan vlc media playereq0.9.2
videolan:vlc_media_playervideolan vlc media playereq0.9.3
videolan:vlc_media_playervideolan vlc media playereq0.9.4
videolan:vlc_media_playervideolan vlc media playereq0.9.5
videolan:vlc_media_playervideolan vlc media playereq0.9.6
videolan:vlc_media_playervideolan vlc media playereq0.9.8a
videolan:vlc_media_playervideolan vlc media playereq0.9.9
videolan:vlc_media_playervideolan vlc media playereq0.9.9a

CPE	Name	Operator	Version
videolan:vlc_media_player	videolan vlc media player	eq	0.9.0
videolan:vlc_media_player	videolan vlc media player	eq	0.9.1
videolan:vlc_media_player	videolan vlc media player	eq	0.9.2
videolan:vlc_media_player	videolan vlc media player	eq	0.9.3
videolan:vlc_media_player	videolan vlc media player	eq	0.9.4
videolan:vlc_media_player	videolan vlc media player	eq	0.9.5
videolan:vlc_media_player	videolan vlc media player	eq	0.9.6
videolan:vlc_media_player	videolan vlc media player	eq	0.9.8a
videolan:vlc_media_player	videolan vlc media player	eq	0.9.9
videolan:vlc_media_player	videolan vlc media player	eq	0.9.9a