6 matches found
Gentoo Security Advisory GLSA 200804-25 (vlc)
The remote host is missing updates announced in advisory GLSA 200804-25. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Debian Security Advisory DSA 1543-1 (vlc)
The remote host is missing an update to vlc announced via advisory DSA 1543-1. OpenVAS Vulnerability Test $Id: deb15431.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1543-1 vlc Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Debian DSA-1543-1 : vlc - several vulnerabilities
Luigi Auriemma, Alin Rad Pop, Remi Denis-Courmont, Quovodis, Guido Landi, Felipe Manzano, Anibal Sacco and others discovered multiple vulnerabilities in vlc, an application for playback and streaming of audio and video. In the worst case, these weaknesses permit a remote, unauthenticated attacker...
VLC媒体播放器MP4_ReadBox_rdrf()函数堆溢出漏洞
BUGTRAQ ID: 28433 CVECAN ID: CVE-2008-1489 VLC Media Player是一款免费的媒体播放器。 VLC播放器的modules/demux/mp4/libmp4.c文件中的MP4ReadBoxrdrf函数存在整数溢出漏洞,如果用户受骗打开的MP4文件中包含有特制的RDRF元素的话,就可能触发堆溢出,导致执行任意指令。 VideoLAN VLC Media Player 0.8.6e Rémi Denis-Courmont ([email protected]) 链接:http://secunia.com/advisories/29503/...
CVE-2008-1489
Integer overflow in the MP4ReadBoxrdrf function in libmp4.c for VLC 0.8.6e allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted MP4 RDRF box that triggers a heap-based buffer overflow, a different vulnerability than CVE-2008-0984...
CVE-2008-1489
CVE-2008-1489 is an integer overflow in VLC’s MP4 handling (MP4_ReadBox_rdrf in libmp4.c) that can cause a heap-based buffer overflow, potentially crashing or executing code. The VLC GLSA entries indicate this was addressed by upgrading to VLC 0.8.6f (fixed in later 0.8.6x builds). Connected advi...