Lucene search
K

15 matches found

Ubuntu
Ubuntu
added 2021/03/15 9:33 p.m.51 views

USN-4805-1: VLC vulnerabilities

It was discovered that VLC mishandled certain crafted media files. An attacker could use this vulnerability to cause a denial of service crash or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM. CVE-2017-10699 It was discovered that VLC mishandled certain crafted MKV...

9.8CVSS8.5AI score0.40612EPSS
Exploits10
Check Point Advisories
Check Point Advisories
added 2018/10/21 12:0 a.m.18 views

VLC Media Player 2.2.8 Vulnerable to Arbitrary Code Execution (CVE-2018-11529)

VideoLAN VLC media player is prone to a use after free vulnerability which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed exploit attempts will likely result in denial of service conditions...

6.8CVSS4.8AI score0.40612EPSS
Exploits10
Mageia
Mageia
added 2018/10/19 6:0 p.m.32 views

Updated vlc packages fix security vulnerability

This update provides vlc 3.0.4 and fixes at least the following security issue: A use-after-free was discovered in the MP4 demuxer of the VLC media player, which could result in the execution of arbitrary code if a malformed media file is played CVE-2018-11529 For other fixes in this update, see...

8CVSS3.6AI score0.40612EPSS
Exploits10References3
Packet Storm
Packet Storm
added 2018/10/11 12:0 a.m.257 views

VLC Media Player 2.2.8 MKV Use-After-Free

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VLC Media Player MKV Use After Free', 'Description' = %q This module exploits a use after free vulnerability in VideoLAN VLC = MSFLICENSE, 'Autho...

6.8CVSS0.2AI score0.40612EPSS
Exploits10
Circl
Circl
added 2018/10/10 6:56 p.m.21 views

CVE-2018-11529

creationtimestamp| type| source ---|---|--- 2018-10-10 18:56:15+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/vlcmkv.rb 2018-10-11 10:06:21+00:00| published-proof-of-concept| https://t.me/VulnerabilityNews/2252 2018-10-16 00:00:00+00:0...

8CVSS7.2AI score0.40612EPSS
Exploits10References7
Tenable Nessus
Tenable Nessus
added 2018/08/31 12:0 a.m.104 views

VLC Media Player <= 2.2.8 Use-After-Free RCE

The version of VLC media player installed on the remote host is equal or prior to 2.2.8. It is, therefore, affected by a use-after-free vulnerability. An attacker could leverage this vulnerability to cause a denial of service or potentially execute arbitrary code. C Tenable Network Security, Inc...

8CVSS7.6AI score0.40612EPSS
Exploits10References2
Tenable Nessus
Tenable Nessus
added 2018/07/23 12:0 a.m.32 views

FreeBSD : vlc -- Use after free vulnerability (dc57ad48-ecbb-439b-a4d0-5869be47684e)

Mitre reports : VideoLAN VLC media player 2.2.x is prone to a use after free vulnerability which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed exploit attempts will likely result in denial of service conditions. C Tenable Network Security, Inc. The descriptive...

8CVSS8AI score0.40612EPSS
Exploits10References6
Tenable Nessus
Tenable Nessus
added 2018/07/20 12:0 a.m.30 views

Debian DSA-4251-1 : vlc - security update

A use-after-free was discovered in the MP4 demuxer of the VLC media player, which could result in the execution of arbitrary code if a malformed media file is played. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Adviso...

8CVSS8.1AI score0.40612EPSS
Exploits10References4
OSV
OSV
added 2018/07/11 4:29 p.m.8 views

CVE-2018-11529

VideoLAN VLC media player 2.2.x is prone to a use after free vulnerability which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed exploit attempts will likely result in denial of service conditions...

8CVSS8AI score
Exploits0References4
CVE
CVE
added 2018/07/11 4:0 p.m.139 views

CVE-2018-11529

VLC media player 2.2.x is affected by a use-after-free vulnerability in the MP4 demuxer that can be triggered by crafted MKV files, enabling arbitrary code execution. In the documented exploitchain, VLC 2.2.8 (and earlier 2.2.x) is at risk, with failures potentially causing denial of service. The...

8CVSS7.9AI score0.40612EPSS
Exploits10References4Affected Software1
seebug.org
seebug.org
added 2018/07/11 12:0 a.m.220 views

VLC media player 2.2.8 Arbitrary Code Execution PoC(CVE-2018-11529)

Exploit Title: VLC media player 2.2.8 Arbitrary Code Execution PoC Date: 6-6-2018 Exploit Author: Eugene Ng Vendor Homepage: https://www.videolan.org/vlc/index.html Software Link: http://download.videolan.org/pub/videolan/vlc/2.2.8/win64/vlc-2.2.8-win64.exe Version: 2.2.8 Tested on: Windows 10 x6...

0.9AI score0.40612EPSS
Exploits10
Packet Storm
Packet Storm
added 2018/07/10 12:0 a.m.62 views

VLC Media Player 2.2.8 Arbitrary Code Execution

Message Classification: Restricted Exploit Title: VLC media player 2.2.8 Arbitrary Code Execution PoC Date: 6-6-2018 Exploit Author: Eugene Ng Vendor Homepage: https://www.videolan.org/vlc/index.html Software Link: http://download.videolan.org/pub/videolan/vlc/2.2.8/win64/vlc-2.2.8-win64.exe...

0.9AI score0.40612EPSS
Exploits10
Exploit DB
Exploit DB
added 2018/07/05 12:0 a.m.74 views

VLC media player 2.2.8 - Arbitrary Code Execution (PoC)

Exploit Title: VLC media player 2.2.8 - Arbitrary Code Execution PoC Date: 2018-06-06 Exploit Author: Eugene Ng Vendor Homepage: https://www.videolan.org/vlc/index.html Software Link: http://download.videolan.org/pub/videolan/vlc/2.2.8/win64/vlc-2.2.8-win64.exe Version: 2.2.8 Tested on: Windows 1...

8CVSS7.9AI score0.40612EPSS
Exploits10
exploitpack
exploitpack
added 2018/07/05 12:0 a.m.50 views

VLC media player 2.2.8 - Arbitrary Code Execution (PoC)

VLC media player 2.2.8 - Arbitrary Code Execution PoC Exploit Title: VLC media player 2.2.8 - Arbitrary Code Execution PoC Date: 2018-06-06 Exploit Author: Eugene Ng Vendor Homepage: https://www.videolan.org/vlc/index.html Software Link:...

6.8CVSS0.9AI score0.40612EPSS
Exploits10
Openbugbounty
Openbugbounty
added 2017/06/05 7:23 p.m.10 views

segaclassics.com XSS vulnerability

Open Bug Bounty ID: OBB-245031 Description| Value ---|--- Affected Website:| segaclassics.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Rows per page
Query Builder