Lucene search
Harry SintonenPACKETSTORM:98139HistoryFeb 03, 2011 - 12:00 a.m.
VLC Media Player Memory Corruption
2011-02-0300:00:00
Harry Sintonen
packetstormsecurity.com
22
0.831 High
EPSS
Percentile
98.1%
`VLC media player is prone to a heap-based memory-corruption vulnerability.
Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
An attacker can exploit this issue by enticing an unsuspecting user to open a malicious media file containing malicious subtitles with the vulnerable application.
The following proof-of-concept commands are available:
1. echo -ne '<foo\0crashme' | dd conv=notrunc bs=1 seek=877862 \ of=refined-australia-blu720p-sample.mkv
2. vlc --sub-language English refined-australia-blu720p-sample.mkv
`
Related
openvas
openvas
prion
prion
Memory corruption
2011-02-07 21:00:00
debiancve
debiancve
CVE-2011-0522
2011-02-07 21:00:15
ubuntucve
ubuntucve
CVE-2011-0522
2011-02-07 00:00:00
cve
cve
CVE-2011-0522
2011-02-07 21:00:15
cvelist
cvelist
CVE-2011-0522
2011-02-07 20:19:00
nessus
nessus
VLC Media Player < 1.1.6 Multiple Vulnerabilities
2011-01-27 00:00:00
GLSA-201411-01 : VLC: Multiple vulnerabilities
2014-11-06 00:00:00
gentoo
gentoo
VLC: Multiple vulnerabilities
2014-11-05 00:00:00
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00