Videolan » Vlc Media Player : Security Vulnerabilities, CVEs, Published In 2008 (Denial of service)
Integer overflow in the Open function in modules/demux/tta.c in VLC Media Player 0.8.6i allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TTA file, which triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
Max CVSS
9.3
EPSS Score
9.82%
Published
2008-08-20
Updated
2017-09-29
Heap-based buffer overflow in the libaccess_realrtsp plugin in VideoLAN VLC Media Player 0.8.6d and earlier on Windows might allow remote RTSP servers to cause a denial of service (application crash) or execute arbitrary code via a long string.
Max CVSS
10.0
EPSS Score
0.92%
Published
2008-01-16
Updated
2017-09-29
Heap-based buffer overflow in modules/access/rtsp/real_sdpplin.c in the Xine library, as used in VideoLAN VLC Media Player 0.8.6d and earlier, allows user-assisted remote attackers to cause a denial of service (crash) or execute arbitrary code via long Session Description Protocol (SDP) data.
Max CVSS
8.5
EPSS Score
4.49%
Published
2008-01-16
Updated
2017-09-29
3 vulnerabilities found