VLC Media Player USF and Text Subtitles Decoders BOF Vulnerabilities (Windows)

The host is installed with VLC Media Player and is prone to buffer overflow vulnerabilities. OpenVAS Vulnerability Test $Id: secpodvlcmediaplayerbofvulnfeb11win.nasl 8174 2017-12-19 12:23:25Z cfischer $ VLC Media Player USF and Text Subtitles Decoders BOF Vulnerabilities Windows Authors: Madhuri ...

CVE-2011-0522

The StripTags function in 1 the USF decoder modules/codec/subtitles/subsdec.c and 2 the Text decoder modules/codec/subtitles/subsusf.c in VideoLAN VLC Media Player 1.1 before 1.1.6-rc allows remote attackers to execute arbitrary code via a subtitle with an opening "" in an MKV file, which trigger...

CVE-2011-0522

The StripTags function in 1 the USF decoder modules/codec/subtitles/subsdec.c and 2 the Text decoder modules/codec/subtitles/subsusf.c in VideoLAN VLC Media Player 1.1 before 1.1.6-rc allows remote attackers to execute arbitrary code via a subtitle with an opening "" in an MKV file, which trigger...

CVE-2011-0522

CVE-2011-0522 affects VLC Media Player 1.1 and earlier, where the StripTags path in USF and Text subtitle decoders (subsdec.c, subsusf.c) can be triggered by a specially crafted MKV subtitle containing an opening “”. This leads to heap memory corruption and remote code execution as demonstrated b...

VLC Media Player < 1.1.6 Multiple Vulnerabilities

The version of VLC media player installed on the remote host is earlier than 1.1.6. Such versions are reportedly affected by the following vulnerabilities : - An integer overflow vulnerability exists due a failure to properly parse the header of a Real Media, which could then trigger a heap-based...