[TKADV2008-010] VLC media player TiVo ty Processing Stack Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: VLC media player TiVo ty Processing Stack Overflow Vulnerability Advisory ID: TKADV2008-010 Revision: 1.0 Release Date: 2008/10/20 Last Modified: 2008/10/20 Date Reported: 2008/10/18 Author: Tobias Klein tk at trapkit.de Affected Software: V...

VideoLAN VLC Media Player 0.9.4 - '.ty' Local Buffer Overflow (SEH)

!/usr/bin/perl 10/23/2008 ksOSe Rewritten VLC 0.9.4 .TY File Buffer Overflow Exploit 1 - Works on Windows XP SP1, SP2, SP3 and probably win2k 2 - Works both with a local file and with a remote url 3 - VLC do not crash! 4 - Enjoy a respawing shell, even if VLC will be closed! bUGGEd htdocs nc -l -...

CVE-2008-4686

Multiple integer overflows in ty.c in the TY demux plugin aka the TiVo demuxer in VideoLAN VLC media player, probably 0.9.4, might allow remote attackers to execute arbitrary code via a crafted .ty file, a different vulnerability than CVE-2008-4654...

CVE-2008-4686

CVE-2008-4686 affects VideoLAN VLC Media Player, describing multiple integer overflows in the TY demux plugin (ty.c) of the TiVo demuxer. The vulnerability could allow remote attackers to execute arbitrary code via a crafted .ty file, likely affecting VLC 0.9.0 through 0.9.4; this is a distinct i...

CVE-2008-4686

Multiple integer overflows in ty.c in the TY demux plugin aka the TiVo demuxer in VideoLAN VLC media player, probably 0.9.4, might allow remote attackers to execute arbitrary code via a crafted .ty file, a different vulnerability than CVE-2008-4654...

DEBIAN-CVE-2008-3732

Integer overflow in the Open function in modules/demux/tta.c in VLC Media Player 0.8.6i allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted TTA file, which triggers a heap-based buffer overflow. NOTE: some of these details are...

VideoLAN VLC Media Player 0.8.6d SSA Parsing Double Sh311 - Universal

VideoLAN VLC Media Player 0.8.6d SSA Parsing Double Sh311 - Universal !/usr/bin/python VLC 0.8.6d Double Sh311 Universal Exploit CVE-2007-6681 Vulnerability Discovered by Michal Luczaj Coded by Muris Kurgas aka j0rgan http://www.jorgan.users.cg.yu/ and Matteo Memelli aka ryujin...

Design/Logic Flaw

Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory...

CVE-2008-2147

Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory...

CVE-2008-2147

Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory...

CVE-2008-2147

Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory...

DEBIAN-CVE-2008-2147

Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory...

CVE-2008-2147

Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory...

CVE-2008-2147

CVE-2008-2147 affects VLC media player and relates to an untrusted search path vulnerability that could allow local privilege escalation via a malicious library placed in modules/ or plugins/ within the current working directory. Public disclosures in 2008-2009 reference VLC and related Debian/Ge...

VLC 0.8.6d httpd_FileCallBack Remote Format String Exploit

No description provided by source. / Epibite // bite since 1442 pown meme ta mamie / / Advisory from Luigi Auriemma CVE-2007-6682 / format string in VideoLAN VLC 0.8.6d Description : Format string vulnerability in the httpdFileCallBack...

vlc-format.txt

/ Epibite // bite since 1442 pown meme ta mamie / / Advisory from Luigi Auriemma CVE-2007-6682 / format string in VideoLAN VLC 0.8.6d Description : Format string vulnerability in the httpdFileCallBack function network/httpd.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary cod...

VideoLAN VLC Media Player 0.8.6d - httpd_FileCallBack Remote Format String

VideoLAN VLC Media Player 0.8.6d - httpdFileCallBack Remote Format String / Epibite // bite since 1442 pown meme ta mamie / / Advisory from Luigi Auriemma CVE-2007-6682 / format string in VideoLAN VLC 0.8.6d Description : Format string vulnerability in the httpdFileCallBack function network/httpd...

VLC 0.8.6d httpd_FileCallBack Remote Format String Exploit

Exploit for unknown platform in category remote exploits ========================================================== VLC 0.8.6d httpdFileCallBack Remote Format String Exploit ========================================================== / Epibite // bite since 1442 pown meme ta mamie / / Advisory fro...

VLC媒体播放器MP及Cinepak解码器缓冲区溢出漏洞

BUGTRAQ ID: 28904,28903 CVECAN ID: CVE-2008-1769,CVE-2008-1768 VLC Media Player是一款免费的媒体播放器。 VLC处理畸形格式的媒体文件时存在漏洞，如果用户受骗使用VLC播放器打开了特制的媒体文件或流媒体的话，就会在MP4和Cinepak解码器模块中触发缓冲区溢出，导致拒绝服务或执行任意指令。 VideoLAN VLC Media Player 0.8.6e Gentoo ------ Gentoo已经为此发布了一个安全公告（GLSA-200804-25）以及相应补丁: GLSA-200804-25：VLC:...

VLC媒体播放器字幕文件栈溢出漏洞

BUGTRAQ ID: 28274 CVECAN ID: CVE-2008-1881 VLC Media Player是一款免费的媒体播放器。 VLC播放器的modules/demux/subtitle.c文件的ParseSSA函数中存在栈溢出漏洞： if sscanf s, "Dialogue: %^,,%d:%d:%d.%d,%d:%d:%d.%d,%81920^\r\n", buffertext2, 如果用户受骗打开了SSA文件中的超长字幕的话，就可能触发这个溢出，导致执行任意指令。 VideoLAN VLC Media Player 0.8.6e Gentoo ------...