CVE-2013-7340

VideoLAN VLC Media Player prior to 2.0.7 is affected by CVE-2013-7340, which allows remote attackers to trigger a denial of service through memory consumption caused by a crafted playlist file. This is documented across multiple sources (NVD/Red Hat/OpenVAS references) confirming the vulnerabilit...

DEBIAN-CVE-2014-1684

The ASFReadObjectfileproperties function in modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media Player before 2.1.3 allows remote attackers to cause a denial of service divide-by-zero error and crash via a zero minimum and maximum data packet size in an ASF file...

Denial of service

The ASFReadObjectfileproperties function in modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media Player before 2.1.3 allows remote attackers to cause a denial of service divide-by-zero error and crash via a zero minimum and maximum data packet size in an ASF file...

CVE-2013-6933

The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2011.08.13 through 2013.11.25, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a 1 space or 2 tab character at the beginning of an...

Integer overflow

The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2011.08.13 through 2013.11.25, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a 1 space or 2 tab character at the beginning of an...

CVE-2013-6933

The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2011.08.13 through 2013.11.25, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a 1 space or 2 tab character at the beginning of an...

CVE-2013-6934

The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2013.11.26, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a space character at the beginning of an RTSP message, which triggers a...

CVE-2013-6934

CVE-2013-6934 affects VLC Media Player via the Live555 liblivemedia RTSP implementation. The issue arises in parseRTSPRequestString: a space at the beginning of an RTSP message can trigger an integer underflow, an infinite loop, and a buffer overflow, potentially crashing the application or enabl...

CVE-2013-6934

The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2013.11.26, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a space character at the beginning of an RTSP message, which triggers a...

CVE-2013-6283

VideoLAN VLC Media Player 2.0.8 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long string in a URL in a m3u file...

CVE-2013-6283

VideoLAN VLC Media Player 2.0.8 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long string in a URL in a m3u file...

Design/Logic Flaw

VideoLAN VLC Media Player 2.0.8 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long string in a URL in a m3u file...

CVE-2013-6283

CVE-2013-6283 affects VideoLAN VLC Media Player 2.0.8 and earlier. A long string in a URL within an M3U file can cause denial of service and potentially allow arbitrary code execution. The vulnerability is documented across multiple feeds (OSV, OpenVAS, Nessus) with a common impact: DoS and possi...

CVE-2013-6283

VideoLAN VLC Media Player 2.0.8 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long string in a URL in a m3u file...

ASF Demux for VideoLAN VLC Media Player 2.0.x - Denial of Service (PoC)

ASF Demux for VideoLAN VLC Media Player 2.0.x - Denial of Service PoC Exploit Title: Denial of service in ASF demux for VLC 2.0.X Date: 01/10/2013 Exploit Author: Pedro Ribeiro Vendor Homepage: http://www.videolan.org/vlc/ Software Link: http://www.videolan.org/vlc/download Version: 2.0.0 - 2.0.8...

ASF Demux for VideoLAN VLC Media Player 2.0.x - Denial of Service (PoC)

Exploit Title: Denial of service in ASF demux for VLC 2.0.X Date: 01/10/2013 Exploit Author: Pedro Ribeiro Vendor Homepage: http://www.videolan.org/vlc/ Software Link: http://www.videolan.org/vlc/download Version: 2.0.0 - 2.0.8 Tested on: Linux x32/x64, Windows XP x32, Windows XP x64 CVE : nope T...

UBUNTU-CVE-2013-4388

Buffer overflow in the mp4a packetizer modules/packetizer/mpeg4audio.c in VideoLAN VLC Media Player before 2.0.8 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors...

CVE-2013-4388

CVE-2013-4388 affects VideoLAN VLC Media Player via the mp4a packetizer (modules/packetizer/mpeg4audio.c). The vulnerability is a buffer overflow that can cause a crash and, potentially, arbitrary code execution. Connected advisories confirm VLC up to 2.0.8 vulnerable; upstream fix implemented in...

CVE-2013-4388

Buffer overflow in the mp4a packetizer modules/packetizer/mpeg4audio.c in VideoLAN VLC Media Player before 2.0.8 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors...

VLC Media Player Multiple Vulnerabilities - July 13 (Windows)

This host is installed with VLC Media Player and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbvlcmediaplayermultvulnjul13win.nasl 8174 2017-12-19 12:23:25Z cfischer $ VLC Media Player Multiple Vulnerabilities - July 13 Windows Authors: Arun Kallavi Copyright: Copyright ...