Vlc Media Player Security Vulnerabilities and Issues — Vlc Media Player CVE List

Lucene search

VideolanVlc Media Player

3 matches found

CVE•added 2008/10/22 12:11 a.m.•56 views

CVE-2008-4654

Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty.c) in VLC Media Player 0.9.0 through 0.9.4 allows remote attackers to execute arbitrary code via a TiVo TY media file with a header containing a crafted size value.

9.3CVSS7.6AI score0.81203EPSS

CVE•added 2008/10/22 6:0 p.m.•55 views

CVE-2008-4686

Multiple integer overflows in ty.c in the TY demux plugin (aka the TiVo demuxer) in VideoLAN VLC media player, probably 0.9.4, might allow remote attackers to execute arbitrary code via a crafted .ty file, a different vulnerability than CVE-2008-4654.

9.3CVSS7.2AI score0.81203EPSS

CVE•added 2008/10/15 12:0 a.m.•47 views

CVE-2008-4558

Array index error in VLC media player 0.9.2 allows remote attackers to overwrite arbitrary memory and execute arbitrary code via an XSPF playlist file with a negative identifier tag, which passes a signed comparison.

6.8CVSS7.3AI score0.15965EPSS