Integer underflow in the real_get_rdt_chunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | mplayer | < 2:1.0~rc3+svn20100502-3 | mplayer_2:1.0~rc3+svn20100502-3_all.deb |
Debian | 11 | all | mplayer | < 2:1.0~rc3+svn20100502-3 | mplayer_2:1.0~rc3+svn20100502-3_all.deb |
Debian | 10 | all | mplayer | < 2:1.0~rc3+svn20100502-3 | mplayer_2:1.0~rc3+svn20100502-3_all.deb |
Debian | 999 | all | mplayer | < 2:1.0~rc3+svn20100502-3 | mplayer_2:1.0~rc3+svn20100502-3_all.deb |
Debian | 13 | all | mplayer | < 2:1.0~rc3+svn20100502-3 | mplayer_2:1.0~rc3+svn20100502-3_all.deb |
Debian | 12 | all | vlc | < 1.0.1-1 | vlc_1.0.1-1_all.deb |
Debian | 11 | all | vlc | < 1.0.1-1 | vlc_1.0.1-1_all.deb |
Debian | 10 | all | vlc | < 1.0.1-1 | vlc_1.0.1-1_all.deb |
Debian | 999 | all | vlc | < 1.0.1-1 | vlc_1.0.1-1_all.deb |
Debian | 13 | all | vlc | < 1.0.1-1 | vlc_1.0.1-1_all.deb |