Multiple buffer overflows in VideoLAN VLC media player 2.0.4 and earlier allow remote attackers to cause a denial of service (crash) and execute arbitrary code via vectors related to the (1) freetype renderer and (2) HTML subtitle parser.
CPE | Name | Operator | Version |
---|---|---|---|
vlc_media_player | eq | 2.0.2 | |
vlc_media_player | eq | 2.0.1 | |
vlc_media_player | le | 2.0.4 | |
vlc_media_player | eq | 2.0.0 | |
vlc_media_player | eq | 2.0.3 |