Lucene search
HistoryMar 03, 2014 - 4:55 p.m.
CVE-2014-1684
vlc media player
asf
denial of service
cve-2014-1684
security
vulnerability
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
7 High
AI Score
Confidence
High
0.833 High
EPSS
Percentile
98.5%
The ASF_ReadObject_file_properties function in modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media Player before 2.1.3 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a zero minimum and maximum data packet size in an ASF file.
Affected configurations
Node
videolanvlc_media_playerRange≤2.1.2
ORvideolanvlc_media_playerMatch1.0.0
ORvideolanvlc_media_playerMatch1.0.1
ORvideolanvlc_media_playerMatch1.0.2
ORvideolanvlc_media_playerMatch1.0.3
ORvideolanvlc_media_playerMatch1.0.4
ORvideolanvlc_media_playerMatch1.0.5
ORvideolanvlc_media_playerMatch1.0.6
ORvideolanvlc_media_playerMatch1.1.0
ORvideolanvlc_media_playerMatch1.1.1
ORvideolanvlc_media_playerMatch1.1.2
ORvideolanvlc_media_playerMatch1.1.3
ORvideolanvlc_media_playerMatch1.1.4
ORvideolanvlc_media_playerMatch1.1.4.1
ORvideolanvlc_media_playerMatch1.1.5
ORvideolanvlc_media_playerMatch1.1.6
ORvideolanvlc_media_playerMatch1.1.6.1
ORvideolanvlc_media_playerMatch1.1.7
ORvideolanvlc_media_playerMatch1.1.8
ORvideolanvlc_media_playerMatch1.1.9
ORvideolanvlc_media_playerMatch1.1.10
ORvideolanvlc_media_playerMatch1.1.10.1
ORvideolanvlc_media_playerMatch1.1.11
ORvideolanvlc_media_playerMatch1.1.12
ORvideolanvlc_media_playerMatch1.1.13
ORvideolanvlc_media_playerMatch2.0.0
ORvideolanvlc_media_playerMatch2.0.1
ORvideolanvlc_media_playerMatch2.0.2
ORvideolanvlc_media_playerMatch2.0.3
ORvideolanvlc_media_playerMatch2.0.4
ORvideolanvlc_media_playerMatch2.0.5
ORvideolanvlc_media_playerMatch2.0.6
ORvideolanvlc_media_playerMatch2.0.7
ORvideolanvlc_media_playerMatch2.0.8
ORvideolanvlc_media_playerMatch2.0.9
ORvideolanvlc_media_playerMatch2.1.0
ORvideolanvlc_media_playerMatch2.1.1
Related
openvas
openvas
VLC Media Player ASF Demuxer Denial of Service Vulnerability - Linux
2014-03-06 00:00:00
VLC Media Player ASF Demuxer Denial of Service Vulnerability - Mac OS X
2014-03-06 00:00:00
VLC Media Player ASF Demuxer Denial of Service Vulnerability - Windows
2014-03-06 00:00:00
ubuntucve
ubuntucve
CVE-2014-1684
2014-03-03 00:00:00
debiancve
debiancve
CVE-2014-1684
2014-03-03 16:55:04
cvelist
cvelist
CVE-2014-1684
2014-03-03 16:00:00
nessus
nessus
VLC < 2.1.3 DoS Vulnerability
2020-06-11 00:00:00
GLSA-201603-08 : VLC: Multiple vulnerabilities
2016-03-14 00:00:00
prion
prion
Denial of service
2014-03-03 16:55:00
packetstorm
packetstorm
VLC Media Player 2.1.2 Denial Of Service
2014-02-06 00:00:00
zdt
zdt
VLC 2.1.2 (.asf) - Crash PoC
2014-02-05 00:00:00
nvd
nvd
CVE-2014-1684
2014-03-03 16:55:04
gentoo
gentoo
VLC: Multiple vulnerabilities
2016-03-12 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
7 High
AI Score
Confidence
High
0.833 High
EPSS
Percentile
98.5%
Related for CVE-2014-1684