5 matches found
Debian DSA-2211-1 : vlc - missing input sanitising
Ricardo Narvaja discovered that missing input sanitising in VLC, a multimedia player and streamer, could lead to the execution of arbitrary code if a user is tricked into opening a malformed media file. This update also provides updated packages for oldstable lenny for vulnerabilities, which have...
[SECURITY] [DSA 2211-1] vlc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2211-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 06, 2011 http://www.debian.org/security/faq -...
CVE-2010-3276
libdirectxplugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an NSV file...
CVE-2010-3276
VLC Media Player before 1.1.8 is affected by CVE-2010-3276 via a crafted width in NSV files that exploits libdirectx_plugin.dll to allow remote arbitrary code execution. Affected component: VLC’s NSV handling in libdirectx_plugin.dll; root cause: improper parsing of NSV width data leading to code...
CORE-2011-0208: VLC Vulnerabilities handling .AMV and .NSV files
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - Corelabs Advisory http://corelabs.coresecurity.com/ VLC Vulnerabilities handling .AMV and .NSV files 1. Advisory Information Title: VLC Vulnerabilities handling .AMV and .NSV files Advisory ID: CORE-2011-0208 Advisory URL:...