Lucene search
RootSSV:3535HistoryJul 03, 2008 - 12:00 a.m.
VLC Media Player WAV文件缓冲区溢出漏洞
2008-07-0300:00:00
Root
www.seebug.org
26
0.121 Low
EPSS
Percentile
94.8%
BUGTRAQ ID: 30058
CVE ID:CVE-2008-2430
CNCVE ID:CNCVE-20082430
VLC media player是一款流行的媒体播放器。
VLC media player处理WAV文件存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序权限执行任意指令。
modules/demux/wav.c文件中的"Open()"函数存在一个整数溢出,构建包含超大"fmt"块的WAV文件,诱使用户访问,可触发基于堆的溢出,可能以应用程序权限执行任意指令。
VideoLAN VLC media player 0.8.6 h
升级程序:
VideoLAN VLC media player 0.8.6 h
* VideoLAN Changeset 3de60bf5b886ad81d7c05d68dff7a1ba461c0ac1
<a href=“https://trac.videolan.org/vlc/changeset/3de60bf5b886ad81d7c05d68dff7a1” target=“_blank”>https://trac.videolan.org/vlc/changeset/3de60bf5b886ad81d7c05d68dff7a1</a> ba461c0ac1
Related
checkpoint_advisories
checkpoint_advisories
VideoLAN VLC Media Player WAV Processing Integer Overflow (CVE-2008-2430)
2009-09-24 00:00:00
prion
prion
Integer overflow
2008-07-07 23:41:00
nessus
nessus
VLC Media Player < 0.8.6i WAV File Handling Integer Overflow
2008-07-15 00:00:00
GLSA-200807-13 : VLC: Multiple vulnerabilities
2008-08-01 00:00:00
Debian DSA-1819-1 : vlc - several vulnerabilities
2009-06-19 00:00:00
debiancve
debiancve
CVE-2008-2430
2008-07-07 23:41:00
securityvulns
securityvulns
Secunia Research: VLC Media Player WAV Processing Integer Overflow
2008-07-03 00:00:00
VLC Media Player integer overflow
2008-09-09 00:00:00
ubuntucve
ubuntucve
CVE-2008-2430
2008-07-07 00:00:00
cvelist
cvelist
CVE-2008-2430
2008-07-07 23:00:00
cve
cve
CVE-2008-2430
2008-07-07 23:41:00
openvas
openvas
Gentoo Security Advisory GLSA 200807-13 (vlc)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200807-13 (vlc)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-1819-1)
2009-06-23 00:00:00
gentoo
gentoo
VLC: Multiple vulnerabilities
2008-07-31 00:00:00
debian
debian
[SECURITY] [DSA 1819-1] New vlc packages fix several vulnerabilities
2009-06-18 13:14:01
osv
osv
vlc - several vulnerabilities
2009-06-18 00:00:00