CVE-2011-0522

The StripTags function in 1 the USF decoder modules/codec/subtitles/subsdec.c and 2 the Text decoder modules/codec/subtitles/subsusf.c in VideoLAN VLC Media Player 1.1 before 1.1.6-rc allows remote attackers to execute arbitrary code via a subtitle with an opening "" in an MKV file, which trigger...

Memory corruption

demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service crash and execute arbitrary commands via a crafted MKV WebM or Matroska file that triggers memory corruption, related to "class mismatching" and the...

CVE-2011-0531

demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service crash and execute arbitrary commands via a crafted MKV WebM or Matroska file that triggers memory corruption, related to "class mismatching" and the...

VideoLAN VLC MKV Memory Corruption

This module exploits an input validation error in VideoLAN VLC 'VideoLAN VLC MKV Memory Corruption', 'Description' = %q This module exploits an input validation error in VideoLAN VLC MSFLICENSE, 'Author' = 'Dan Rosenberg' , 'References' = 'OSVDB', '70698' , 'CVE', '2011-0531' , 'BID', '46060' ,...

VideoLAN VLC MKV Memory Corruption

$Id: vlcwebm.rb 11692 2011-02-01 18:54:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

VideoLAN Releases Security Advisory for VLC Media Player

VideoLAN has released a security advisory to address a vulnerability in VLC Media Player. This vulnerability may allow an attacker to execute arbitrary code. US-CERT encourages users and administrators to review VideoLAN security advisory VideoLAN-SA-1102 and apply any necessary updates or...

VideoLAN VLC Media Player 0.9.4 - TiVo Buffer Overflow (Metasploit)

$Id: videolantivo.rb 11701 2011-02-02 21:47:02Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

DEBIAN-CVE-2011-0021

Multiple heap-based buffer overflows in cdg.c in the CDG decoder in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted CDG video...

CVE-2011-0021

Multiple heap-based buffer overflows in cdg.c in the CDG decoder in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted CDG video...

CVE-2011-0021

Multiple heap-based buffer overflows in cdg.c in the CDG decoder in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted CDG video...

Integer overflow

Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a zero isubpackets value in a Real Media file, leading to a heap-based buffer...

CVE-2010-3907

CVE-2010-3907 affects VLC Media Player’s Real demuxer (Real Decoding) via multiple integer overflows in real.c prior to 1.1.6, allowing remote crashes or possibly arbitrary code execution through a zero i_subpackets Real Media file, leading to a heap overflow. Affected product/version: VLC

KMplayer v 2.9.3.1428 DLL Hijacking Exploit

Exploit for windows platform in category local exploits =========================================== KMplayer v 2.9.3.1428 DLL Hijacking Exploit =========================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, ...

VideoLAN VLC Client (Windows x86) - 'smb://' URI Buffer Overflow (Metasploit)

$Id: vlcsmburi.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

VideoLAN VLC Media Player 1.1.3 - wintab32.dll DLL Hijacking

VideoLAN VLC Media Player 1.1.3 - wintab32.dll DLL Hijacking Exploit Title: VLC Player DLL Hijack Vulnerability Date: 25 Aug 2010 Author: Secfence Version: VLC Tested on: Windows XP Place a .mp3 file and wintab32.dll in same folder and execute .mp3 file in vlc player. Code for wintab32.dll:...

VideoLAN Releases a Security Advisory for VLC Media Player

VideoLAN has released a security advisory to address a vulnerability in VLC Media Player. This vulnerability may allow an attacker to execute arbitrary code or cause a denial-of-service condition. The updated release also addresses additional issues that could result in a denial-of-service attack...

VideoLAN VLC Renamed Zip File Handling Code Execution

VLC media player is a free multimedia player for various audio and video formats as well as DVDs, VCDs, and various streaming protocols. A memory corruption vulnerability exists in VideoLAN's VLC Media Player. The vulnerability is due to an uninitialized pointer dereference while handling zip fil...

Critical Flaws Haunt VLC Media Player

VideoLAN has released a security advisory to address multiple vulnerabilities in the VLC Media Player. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. According to a VideoLAN advisory, the flaws occur when the media player attempts to...

VideoLAN Releases Security Advisory for VLC Media Player

VideoLAN has released a security advisory to address multiple vulnerabilities in VLC Media Player. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. US-CERT encourages users and administrators to review VideoLAN security advisory...

VideoLAN VLC Media Player 1.0.x - Bookmark Creation Buffer Overflow

source: https://www.securityfocus.com/bid/38569/info VLC Media Player is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attac...