783 matches found
CVE-2014-9629
CVE-2014-9629 refers to an Integer overflow in the Encode function in modules/codec/schroedinger.c of VideoLAN VLC before 2.1.6 and 2.2.x before 2.2.1. The flaw allows remote attackers to perform buffer overflows and execute arbitrary code via a crafted length value. Connected advisories confirm ...
Memory corruption vulnerability in VLC ts*** files
VLC is a free, open source, cross-platform multimedia player and framework for playing most multimedia files, as well as DVDs, audio CDs, VCDs and various streaming protocols. A memory corruption vulnerability exists in VLC ts files. An attacker can exploit the vulnerability to execute malicious...
The vulnerability of the ParseJSS component in the VideoLAN VLC media player software allows a hacker to gain unauthorized access to protected information.
The vulnerability of the ParseJSS component in the VideoLAN VLC media player software arises from reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially created file...
The vulnerability of the ASF_ReadObject_file_properties function (module/demux/asf/libasf.c) in the media player software VideoLAN VLC allows a hacker to induce a service failure.
The vulnerability of the ASFReadObjectfileproperties function module/demux/asf/libasf.c in the video player software VideoLAN VLC is related to errors in number processing. Exploiting this vulnerability could allow a malicious actor to cause service interruptions through a specially created ASF...
The vulnerability of the RTP protocol implementation in the VideoLAN VLC media player software allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the RTP protocol implementation in the VideoLAN VLC media player lies in buffer overflows in the dynamic memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure by using a specially created ogg file...
The vulnerability of the VideoLAN VLC media player, which arises from reading data beyond the buffer in memory, allows a hacker to cause a system failure.
The vulnerability of the VideoLAN VLC media player arises from reading data beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause the code to fail by using a specially created .wmv file...
The vulnerability of the VideoLAN VLC media player software, related to buffer overflow in dynamic memory, allows a hacker to cause a system failure.
The vulnerability of the VideoLAN VLC media player lies in the overflow of buffers in the dynamic memory. Exploiting this vulnerability can allow a remote attacker to cause a service failure...
The vulnerability of the mms_ReceiveCommand function (modules/access/mms/mmstu.c) in the VideoLAN VLC media player software allows a hacker to execute arbitrary code.
The vulnerability of the mmsReceiveCommand function in the VideoLAN VLC media player’s modules/access/mms/mmstu.c file is related to integer handling errors. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
Multiple vulnerabilities exist in the functions cdio_log_handler (modules/access/cdda/access.c) of the CDDA plugin (libcdda_plugin), and in the cdio_log_handler and vcd_log_handler functions (modules/access/vcdx/access.c) of the VCDX plugin (libvcdx_plugin). These vulnerabilities allow an attacker to execute arbitrary code.
Multiple vulnerabilities exist in the functions cdiologhandler modules/access/cdda/access.c of the CDDA plugin libcddaplugin, and in the cdiologhandler and vcdloghandler functions modules/access/vcdx/access.c of the VCDX plugin libvcdxplugin of the VideoLAN VLC media player software. These...
The vulnerability of the MP4_ReadBox_rdrf function in the Media Player software VideoLAN VLC allows a attacker to cause a service failure.
The vulnerability of the MP4ReadBoxrdrf function in the VideoLAN VLC media player’s libmp4.c file is related to numerical processing errors. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Open function in the modules/demux/wav.c file of the Media Player software VideoLAN VLC allows a hacker to execute arbitrary code.
The vulnerability of the Open function in the VideoLAN VLC media player’s modules/demux/wav.c file is related to numerical processing errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted .WAV file...
The vulnerability of the TY demux plugin (ty.c) in the Media Player software VideoLAN VLC allows a hacker to execute arbitrary code.
The vulnerability of the TY demux plugin ty.c in the Media Player software VideoLAN VLC is related to errors in number processing. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted .ty file...
The vulnerability of the libaccess_realrtsp plugin of the media player software VideoLAN VLC, which allows a hacker to trigger a service failure or execute arbitrary code.
The vulnerability of the libaccessrealrtsp plugin of the media player software VideoLAN VLC lies in buffer overflow in the dynamic memory. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary code...
The vulnerability of the XSPF component in the VideoLAN VLC media player software allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the XSPF component in the VideoLAN VLC media player software is related to numerical processing errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service interruptions...
The vulnerability of the MP4 demultiplexer in the VideoLAN VLC media player software allows a hacker to execute arbitrary code or trigger a service denial.
The vulnerability of the MP4 demultiplexer in the VideoLAN VLC media player software is related to errors in checking the length of string containers. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or trigger a service denial-of-service attack using a specially...
VideoLAN VLC media player buffer overflow vulnerability (CNVD-2019-38505)
VideoLAN VLC media player is a free, open source cross-platform multimedia player also a multimedia framework organized by VideoLAN France. The product supports the playback of a variety of media files, CD-ROMs, etc., a variety of audio and video formats WMV, MP3, etc. and so on. A security...
CVE-2019-18278
When executing VideoLAN VLC media player 3.0.8 with libqt on Windows, Data from a Faulting Address controls Code Flow starting at libqtplugin!vlcentrylicense300f+0x00000000003b9aba. NOTE: the VideoLAN security team indicates that they have not been contacted, and have no way of reproducing this...
Code injection
When executing VideoLAN VLC media player 3.0.8 with libqt on Windows, Data from a Faulting Address controls Code Flow starting at libqtplugin!vlcentrylicense300f+0x00000000003b9aba. NOTE: the VideoLAN security team indicates that they have not been contacted, and have no way of reproducing this...
CVE-2019-18278
When executing VideoLAN VLC media player 3.0.8 with libqt on Windows, Data from a Faulting Address controls Code Flow starting at libqtplugin!vlcentrylicense300f+0x00000000003b9aba. NOTE: the VideoLAN security team indicates that they have not been contacted, and have no way of reproducing this...
CVE-2019-18278
CVE-2019-18278 concerns VideoLAN VLC media player 3.0.8 on Windows when using libqt, where data from a faulting address can control code flow at libqt_plugin!vlc_entry_license__3_0_0f+0x... The core description in both the NVD entry and Red Hat advisory is consistent: the vulnerability relates to...