783 matches found
VLC Media Player '.AVI' File BOF Vulnerability (Windows)
The host is installed with VLC Media Player and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodvlcmediaplayeravibofvulnwin.nasl 8174 2017-12-19 12:23:25Z cfischer $ VLC Media Player '.AVI' File BOF Vulnerability Windows Authors: Madhuri D Copyright: Copyright c...
CVE-2011-2587
Heap-based buffer overflow in the DemuxAudioSipr function in real.c in the RealMedia demuxer in VideoLAN VLC media player 1.1.x before 1.1.11 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted Real Media file...
CVE-2011-2588
Heap-based buffer overflow in the AVIChunkReadstrf function in libavi.c in the AVI demuxer in VideoLAN VLC media player before 1.1.11 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted AVI media file...
DEBIAN-CVE-2011-2588
Heap-based buffer overflow in the AVIChunkReadstrf function in libavi.c in the AVI demuxer in VideoLAN VLC media player before 1.1.11 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted AVI media file...
CVE-2011-2587
Heap-based buffer overflow in the DemuxAudioSipr function in real.c in the RealMedia demuxer in VideoLAN VLC media player 1.1.x before 1.1.11 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted Real Media file...
CVE-2011-2588
The CVE-2011-2588 entry describes a heap-based buffer overflow in VLC’s AVI demuxer (AVI_ChunkRead_strf in libavi.c) that can be triggered by a crafted AVI file. This allows remote crashes or possibly arbitrary code execution and affects VLC versions before 1.1.11. Mitigation: upgrade VLC to 1.1....
VLC Media Player ".RM"和".AVI"文件多个远程堆缓冲区溢出漏洞(CVE-2011-2587)
BUGTRAQ ID: 48664 CVE ID: CVE-2011-2587 VLC Media Player是多媒体播放器(最初命名为VideoLAN客户端)是VideoLAN计划的多媒体播放器。 VLC Media Player在处理.RM和.AVI文件的实现上存在多个远程堆缓冲区溢出漏洞,远程攻击者可利用此漏洞执行任意代码或造成拒绝服务。 在解析 RealMedia RM文件中的RealAudio数据块时存在整数溢出错误,可被利用造成堆缓冲区溢出。 VideoLAN VLC Media Player 1.x 厂商补丁: VideoLAN --------...
VideoLAN Releases VLC Media Player Security Advisories
VideoLAN has released Security Advisory 1105 and Security Advisory 1106 for VLC Media Player 1.1.10 and older to address two vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code. US-CERT encourages users and administrators to do the following to help mitigate the...
CVE-2011-1931
CVE-2011-1931 is a vulnerability in FFmpeg’s AMV handling where sp5xdec.c in the Sunplus SP5X JPEG decoder (libavcodec/FFmpeg) writes outside the bounds of an unspecified array, enabling memory corruption and potentially remote code execution when processing malformed AMV files. The flaw affects ...
CVE-2011-1931
sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of an unspecified array, which allows remote attackers to cause a denia...
CVE-2011-1931
sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of an unspecified array, which allows remote attackers to cause a denia...
VideoLAN VLC Media Player MKV Demuxer Code Execution
Added: 06/27/2011 CVE: CVE-2011-0531 BID: 46060 OSVDB: 70698 Background VLC media player is a media player supporting various audio and video formats for multiple platforms. Problem VideoLan VLC 1.1.6.1 and earlier are vulnerable to a remote code execution vulnerability as a result of insufficien...
VideoLAN VLC Media Player MKV Demuxer Code Execution
Added: 06/27/2011 CVE: CVE-2011-0531 BID: 46060 OSVDB: 70698 Background VLC media player is a media player supporting various audio and video formats for multiple platforms. Problem VideoLan VLC 1.1.6.1 and earlier are vulnerable to a remote code execution vulnerability as a result of insufficien...
VideoLAN VLC Media Player MKV Demuxer Code Execution
Added: 06/27/2011 CVE: CVE-2011-0531 BID: 46060 OSVDB: 70698 Background VLC media player is a media player supporting various audio and video formats for multiple platforms. Problem VideoLan VLC 1.1.6.1 and earlier are vulnerable to a remote code execution vulnerability as a result of insufficien...
VideoLAN VLC Media Player MKV Demuxer Code Execution
Added: 06/27/2011 CVE: CVE-2011-0531 BID: 46060 OSVDB: 70698 Background VLC media player is a media player supporting various audio and video formats for multiple platforms. Problem VideoLan VLC 1.1.6.1 and earlier are vulnerable to a remote code execution vulnerability as a result of insufficien...
CVE-2011-2194
Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow...
DEBIAN-CVE-2011-2194
Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow...
CVE-2011-2194
Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow...
Integer overflow
Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow...
CVE-2011-2194
CVE-2011-2194 describes a heap-based buffer overflow in VLC’s XSPF playlist parser that could allow a remote attacker to crash the player and potentially execute arbitrary code. Affected versions span VLC 0.8.5 through 1.1.9. Multiple open-source advisories corroborate the issue across platforms ...