39 matches found
ROS-2-442
2.442 VLC vulnerability CVE-2020-13428 1. Vulnerability description: Vulnerability in VLC 3.0.11 player The vulnerability could cause a buffer overflow in the hxxxAnnexBtoxVC function. The vulnerability potentially allows to organize attacker's code execution when playing specially formatted vide...
ROS-2-1169
2.1169 VLC vulnerability CVE-2020-13428 1. Vulnerability description: Vulnerability in VLC 3.0.11 player The vulnerability could cause a buffer overflow in the hxxxAnnexBtoxVC function. The vulnerability potentially allows to organize attacker's code execution when playing specially formatted...
VirusTotal Reveals Most Impersonated Software in Malware Attacks
Threat actors are increasingly mimicking legitimate applications like Skype, Adobe Reader, and VLC Player as a means to abuse trust relationships and increase the likelihood of a successful social engineering attack. Other most impersonated legitimate apps by icon include 7-Zip, TeamViewer,...
ROS-2-436
2.436 VLC vulnerability CVE-2021-3185 1. Vulnerability description: Vulnerability in the implementation of the h264parse module developed by the GStreamer project included in the gstreamer-plugins-bad set. The issue is caused by a buffer overflow in the gsth264sliceparsedecrefpicmarking function...
ROS-2-1163
2.1163 VLC vulnerability CVE-2021-3185 1. Vulnerability description: Vulnerability in the implementation of the h264parse module developed by the GStreamer project included in the gstreamer-plugins-bad set. The issue is caused by a buffer overflow in the gsth264sliceparsedecrefpicmarking function...
ROS-2-635
2.635 VLC vulnerability CVE-2020-13428 1. Vulnerability description: Vulnerability in VLC 3.0.11 player The vulnerability could cause a buffer overflow in the hxxxAnnexBtoxVC function. The vulnerability potentially allows to organize attacker's code execution when playing specially formatted vide...
Memory Corruption Vulnerability in VLC Player (CNVD-2021-16335)
VLC is a cross-platform multimedia player and framework for playing most multimedia files, as well as DVDs, audio CDs, VCDs and various streaming protocols. VLC Player suffers from a memory corruption vulnerability that can be exploited by attackers to cause a denial of service...
Memory Corruption Vulnerability in VLC Player (CNVD-2021-16334)
VLC is a cross-platform multimedia player and framework for playing most multimedia files, as well as DVDs, audio CDs, VCDs and various streaming protocols. VLC Player suffers from a memory corruption vulnerability that can be exploited by attackers to cause a denial of service...
VideoLAN VLC Media Player 2.1.5 - Write Access Violation
VideoLAN VLC Media Player 2.1.5 - Write Access Violation Title : VLC Player 2.1.5 Write Access Violation Vulnerability Discoverer: Veysel HATAS @muh4f1z Web page : www.binarysniper.net Vendor : VideoLAN VLC Project Test: Windows XP SP3 Status: Fixed Severity : High CVE ID : CVE-2014-9598 NIST:...
VLC Player 0.8.6i - ActiveX DoS PoC
No description provided by source. html exploit:vlc ActiveX remote buffer overflow poc Author :D3V!L FUCKER and germayax soft :vlc player version:o.8.6i tested :win xp sp2 Greetz 2 : WwW.v99x.CoM we miss you ,his0k4 object classid='clsid:9BE31822-FDAD-461B-AD51-BE1D1C159921' id='target' /object...
VLC Player 2.0.8 (.m3u) - Local Crash PoC
No description provided by source. Exploit Title: VLC Player 2.0.8 = Local Crash PoC Vendor URI: http://www.videolan.org/vlc/ Vendor Description: VLC is a free and open source cross-platform multimedia player and framework that plays most multimedia files as well as DVD, Audio CD, VCD, and variou...
VLC Player <= 2.0.3 (.png) - ReadAV Crash PoC
No description provided by source. !/usr/bin/perl VLC Player 2.0.3 = ReadAV Arbitrary Code Execution Author: Jean Pascal Pereira [email protected] Vendor URI: http://www.videolan.org/vlc/ Vendor Description: VLC is a free and open source cross-platform multimedia player and framework that plays...
VLC 0.86 < 0.86d ActiveX Remote Bad Pointer Initialization PoC
No description provided by source. !-- Core Security Technologiess - CoreLabs Advisory http://www.coresecurity.com/corelabs VLC Activex Bad Pointer Initialization Vulnerability Advisory Information Title: VLC Activex Bad Pointer Initialization Vulnerability Advisory ID: CORE-2007-1004 Advisory UR...
VLC Media Player DLL Hijacking Exploit (wintab32.dll)
No description provided by source. Exploit Title: VLC Player DLL Hijack Vulnerability Date: 25 Aug 2010 Author: Secfence Version: VLC Tested on: Windows XP Place a .mp3 file and wintab32.dll in same folder and execute .mp3 file in vlc player. Code for wintab32.dll: /----------/ / wintab32.cpp /...
Xine 0.99.4 M3U Remote Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22252/info The 'xine' program is prone to a remote format-string vulnerability because the application fails to properly sanitize user-supplied input before including it in the format-specifier argument of a...
New Injection Campaign Peddling Rogue Software Downloads
A mass injection campaign has surfaced over the last two weeks that’s already compromised at least 40,000 web pages worldwide and is tricking victims into downloading rogue, unwanted software to their computer. The campaign, dubbed GWload by researchers at Websense, relies on a Cost Per Action sc...
VLC Player 2.0.8 (.m3u) - Local Crash PoC
VLC Player is prone to a remote denial-of-service vulnerability. Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed exploit attempts may result in a denial-of-service condition. VLC Player 2.0.8 is vulnerable; other versions may also be affected...
VideoLAN VLC Media Player 2.0.8 - .m3u Local Crash (PoC)
VideoLAN VLC Media Player 2.0.8 - .m3u Local Crash PoC Exploit Title: VLC Player 2.0.8 ", "inj3ct0rs...
VideoLAN VLC Media Player 2.0.8 - '.m3u' Local Crash (PoC)
Exploit Title: VLC Player 2.0.8 ", "inj3ct0rs.m3u"; print fi...
VLC Player 2.0.x (.mp3) <= Memory Exhaust PoC
VLC Player 2.0.x .mp3 Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail : submitat1337day.com 1 0 0 1 1 0 I'm KedAns-Dz member from Inj3ct0r Team 1 1 0...