CVE-2012-3377

Heap-based buffer overflow in the OggDecodePacket function in the OGG demuxer modules/demux/ogg.c in VideoLAN VLC media player before 2.0.2 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted OGG file...

CVE-2012-3377

VLC media player < 2.0.2 is vulnerable to a heap-based buffer overflow in the OGG demuxer. The flaw occurs in the Ogg_DecodePacket function (modules/demux/ogg.c) and can allow a remote attacker to cause a crash (DoS) and potentially execute arbitrary code via a crafted OGG file. Affected produ...

CVE-2012-3377

Heap-based buffer overflow in the OggDecodePacket function in the OGG demuxer modules/demux/ogg.c in VideoLAN VLC media player before 2.0.2 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted OGG file...

VLC Media Player 'OGG'文件远程堆缓冲区溢出漏洞

BUGTRAQ ID: 54345 CVE ID: CVE-2012-3377 VLC Media Player是多媒体播放器（最初命名为VideoLAN客户端）是VideoLAN计划的多媒体播放器。 VLC Media Player 2.0.2在处理OGG容器文件时，"OggDecodePacket"函数modules/demux/ogg.c存在边界错误，通过特制的OGG文件可造成堆缓冲区溢出，执行任意代码。 0 VideoLAN VLC Media Player 2.x 厂商补丁： VideoLAN -------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...