13 matches found
CVE-2025-51602
CVE-2025-51602 affects VideoLAN VLC media player prior to 3.0.22. The vulnerability is an out-of-bounds read in mmstu.c that can lead to a denial of service when processing a crafted 0x01 response from an MMS server. Exploitation details are not provided beyond the MMS-triggered read/DoS describe...
Linux Distros Unpatched Vulnerability : CVE-2019-14777
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Control function of demux/mkv/mkv.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free. CVE-2019-14777 Note that Nessus relies on the presence of t...
SUSE CVE-2014-6440
VideoLAN VLC media player before 2.1.5 allows remote attackers to execute arbitrary code or cause a denial of service...
SUSE CVE-2019-14438
A heap-based buffer over-read in xiphPackHeaders in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg file...
UBUNTU-CVE-2021-25804
A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Player 3.0.11 can a denial of service DOS in the application...
PT-2020-2144 · Videolabs +2 · Libmicrodns +2
Name of the Vulnerable Software and Affected Versions: Videolabs libmicrodns version 0.1.0 Description: The issue is related to a buffer overflow in the microdns library of the VideoLAN VLC media player, allowing a remote attacker to cause a denial of service or execute arbitrary code using a...
DEBIAN-CVE-2014-9630
The rtppacketizexiphconfig function in modules/streamout/rtpfmt.c in VideoLAN VLC media player before 2.1.6 uses a stack-allocation approach with a size determined by arbitrary input data, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified...
The vulnerability of the ReadMetaFromId3v2 function in the Media Player software VideoLAN VLC, which allows a hacker to cause a service failure
The vulnerability of the ReadMetaFromId3v2 function in the VideoLAN VLC media player’s code exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure using a specially created file...
The vulnerability of the SeekIndex() function in the VideoLAN VLC media player software allows a hacker to manipulate data integrity, gain unauthorized access to protected information, and cause service failures.
The vulnerability of the SeekIndex function in the VideoLAN VLC media player lies in its division by zero. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to protected information, and even cause service failures...
The vulnerability of the mkv::virtual_segment_c::seek() function in the VideoLAN VLC media player software allows a attacker to compromise data integrity, gain unauthorized access to protected information, and cause service interruptions.
The vulnerability of the mkv::virtualsegmentc::seek function in the VideoLAN VLC media player software relates to its use after deallocation. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to protected information, and cause service...
VideoLAN VLC media player buffer overflow vulnerability (CNVD-2019-23087)
VideoLAN VLC media player is a free, open source cross-platform multimedia player also a multimedia framework organized by VideoLAN France. The product supports the playback of a variety of media files, CD-ROMs, etc., a variety of audio and video formats WMV, MP3, etc. and so on. A buffer overflo...
DEBIAN-CVE-2010-1441
Multiple heap-based buffer overflows in VideoLAN VLC media player before 1.0.6 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted byte stream to the 1 A/52, 2 DTS, or 3 MPEG Audio decoder...
CVE-2007-6684
The RTSP module in VideoLAN VLC 0.8.6d allows remote attackers to cause a denial of service crash via a request without a Transport parameter, which triggers a NULL pointer dereference...