41 matches found
CVE-2025-51602
mmstu.c in VideoLAN VLC media player before 3.0.22 allows an out-of-bounds read and denial of service via a crafted 0x01 response from an MMS server...
CVE-2025-51602
CVE-2025-51602 affects VideoLAN VLC media player prior to 3.0.22. The vulnerability is an out-of-bounds read in mmstu.c that can lead to a denial of service when processing a crafted 0x01 response from an MMS server. Exploitation details are not provided beyond the MMS-triggered read/DoS describe...
VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that can lead to an application crash, related to dav1d_decode_frame_exit.
...
Linux Distros Unpatched Vulnerability : CVE-2019-14777
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Control function of demux/mkv/mkv.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free. CVE-2019-14777 Note that Nessus relies on the presence of t...
Linux Distros Unpatched Vulnerability : CVE-2019-14498
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CA...
Linux Distros Unpatched Vulnerability : CVE-2023-47360
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Videolan VLC prior to version 3.0.20 contains an Integer underflow that leads to an incorrect packet length. CVE-2023-47360 Note that Nessus relies on the...
The vulnerability of the MMS processor in the VideoLAN VLC media player software allows a hacker to influence the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the MMS processor in the VideoLAN VLC media player lies in the possibility of buffer overflow attacks. Exploiting this vulnerability allows a malicious actor to influence the confidentiality, integrity, and accessibility of the protected information by downloading specially...
SUSE CVE-2007-6684
The RTSP module in VideoLAN VLC 0.8.6d allows remote attackers to cause a denial of service crash via a request without a Transport parameter, which triggers a NULL pointer dereference...
SUSE CVE-2011-2587
Heap-based buffer overflow in the DemuxAudioSipr function in real.c in the RealMedia demuxer in VideoLAN VLC media player 1.1.x before 1.1.11 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted Real Media file...
SUSE CVE-2014-6440
VideoLAN VLC media player before 2.1.5 allows remote attackers to execute arbitrary code or cause a denial of service...
SUSE CVE-2019-5459
An Integer underflow in VLC Media Player versions 3.0.7 leads to an out-of-band read...
SUSE CVE-2019-14438
A heap-based buffer over-read in xiphPackHeaders in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg file...
SUSE CVE-2019-14535
A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file...
The vulnerability of the AVI_ExtractSubtitle component of the VLC Media Player allows a hacker to gain access to confidential data and also trigger a service failure.
The vulnerability of the AVIExtractSubtitle component in the VLC Media Player media player is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows a remote attacker to gain access to confidential data and also cause a service failure by using a...
The vulnerability of the vlc_input_attachment_New component in the VLC Media Player software allows a hacker to gain access to confidential data and also cause a service failure.
The vulnerability of the vlcinputattachmentNew component in the VLC Media Player software is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows an attacker to gain access to confidential data and also cause a service failure by using a speciall...
UBUNTU-CVE-2021-25804
A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Player 3.0.11 can a denial of service DOS in the application...
VideoLAN VLC media player 代码问题漏洞
VideoLAN VLC is an open source cross-platform multimedia player and framework that can play most multimedia files, as well as DVDs, audio CDs, VCDs, and various streaming protocols. a null pointer dereference vulnerability exists in "Open" in avi.c in VideoLAN VLC version 3.0.11, which can be...
The vulnerability of the Videolabs libmicrodns 0.1.0 message parser allows a malicious actor to cause a service failure by exploiting a resource consumption issue in the VideoLAN VLC media player.
The vulnerability of the Videolabs libmicrodns 0.1.0 message parser, when used with the VideoLAN VLC media player, is related to an uncontrolled resource consumption during the analysis of mDNS messages. Exploiting this vulnerability could allow a malicious actor to cause service failures remotel...
The vulnerability of the xiph_PackHeaders() function in the VideoLAN VLC media player software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the xiphPackHeaders function located in modules/demux/xiph.h in the VideoLAN VLC media player software is related to a buffer overflow vulnerability in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibilit...
PT-2020-2144 · Videolabs +2 · Libmicrodns +2
Name of the Vulnerable Software and Affected Versions: Videolabs libmicrodns version 0.1.0 Description: The issue is related to a buffer overflow in the microdns library of the VideoLAN VLC media player, allowing a remote attacker to cause a denial of service or execute arbitrary code using a...