Lucene search
K

8 matches found

OSV
OSV
added 2008/04/17 11:5 p.m.2 views

DEBIAN-CVE-2008-1881

Stack-based buffer overflow in the ParseSSA function modules/demux/subtitle.c in VLC 0.8.6e allows remote attackers to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681...

6.8CVSS8.3AI score0.11778EPSS
Exploits1References1
NVD
NVD
added 2008/04/17 11:5 p.m.30 views

CVE-2008-1881

Stack-based buffer overflow in the ParseSSA function modules/demux/subtitle.c in VLC 0.8.6e allows remote attackers to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681...

6.8CVSS7.8AI score0.11778EPSS
Exploits1References13
UbuntuCve
UbuntuCve
added 2008/04/17 11:5 p.m.25 views

CVE-2008-1881

Stack-based buffer overflow in the ParseSSA function modules/demux/subtitle.c in VLC 0.8.6e allows remote attackers to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681...

6.8CVSS6.2AI score0.11778EPSS
Exploits1References1
Prion
Prion
added 2008/04/17 11:5 p.m.29 views

Stack overflow

Stack-based buffer overflow in the ParseSSA function modules/demux/subtitle.c in VLC 0.8.6e allows remote attackers to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681...

6.8CVSS8.1AI score0.17358EPSS
Exploits6References13Affected Software1
CVE
CVE
added 2008/04/17 11:0 p.m.67 views

CVE-2008-1881

VLC 0.8.6e contains a stack-based buffer overflow in ParseSSA (modules/demux/subtitle.c) that can be triggered by a long SSA subtitle, allowing remote code execution. This CVE is CVE-2008-1881; related OpenVAS and Debian advisories document the issue as a real vulnerability and note Debian/ Gento...

6.8CVSS7.7AI score0.11778EPSS
Exploits1References13Affected Software1
Cvelist
Cvelist
added 2008/04/17 11:0 p.m.28 views

CVE-2008-1881

Stack-based buffer overflow in the ParseSSA function modules/demux/subtitle.c in VLC 0.8.6e allows remote attackers to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681...

7.7AI score0.11778EPSS
Exploits1References13
Debian CVE
Debian CVE
added 2008/04/17 11:0 p.m.34 views

CVE-2008-1881

Stack-based buffer overflow in the ParseSSA function modules/demux/subtitle.c in VLC 0.8.6e allows remote attackers to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681...

6.8CVSS7.2AI score0.11778EPSS
Exploits1
securityvulns
securityvulns
added 2008/03/17 12:0 a.m.125 views

VLC highlander bug

The old buffer-overflow in the subtitles handled by VLC has not been fully patched in version 0.8.6e, in fact buffertext2 in ParseSSA is still unchecked: if sscanf s, "Dialogue: ^,,d:d:d.d,d:d:d.d,81920^rn", buffertext2, The funny thing is that my old proof-of-concept was built just to test this...

1.6AI score
Exploits0
Rows per page
Query Builder