PRIOn knowledge basePRION:CVE-2013-1868

HistoryJul 10, 2013 - 7:55 p.m.

Buffer overflow

2013-07-1019:55:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

High

0.232 Low

EPSS

Percentile

96.6%

JSON

Multiple buffer overflows in VideoLAN VLC media player 2.0.4 and earlier allow remote attackers to cause a denial of service (crash) and execute arbitrary code via vectors related to the (1) freetype renderer and (2) HTML subtitle parser.

CPENameOperatorVersion
vlc_media_playereq2.0.2
vlc_media_playereq2.0.1
vlc_media_playerle2.0.4
vlc_media_playereq2.0.0
vlc_media_playereq2.0.3

Name	Operator	Version
vlc_media_player	eq	2.0.2
vlc_media_player	eq	2.0.1
vlc_media_player	le	2.0.4
vlc_media_player	eq	2.0.0
vlc_media_player	eq	2.0.3

References

secunia.com/advisories/59793

www.securityfocus.com/bid/57079

www.videolan.org/security/sa1301.html

marc.info/?l=oss-security&m=136367945627336&w=2

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17226