CVE-2011-0021
- EPSS 5.78%
- Veröffentlicht 25.01.2011 19:00:04
- Zuletzt bearbeitet 16.06.2026 23:26:38
Multiple heap-based buffer overflows in cdg.c in the CDG decoder in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted CDG video.
CVE-2010-3907
- EPSS 5.77%
- Veröffentlicht 03.01.2011 20:00:42
- Zuletzt bearbeitet 16.06.2026 23:23:48
Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a zero i_subpackets value in a Re...
CVE-2010-3124
- EPSS 12.51%
- Veröffentlicht 26.08.2010 18:36:35
- Zuletzt bearbeitet 16.06.2026 23:22:10
Untrusted search path vulnerability in bin/winvlc.c in VLC Media Player 1.1.3 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wintab32.dll that is located i...
- EPSS 2.64%
- Veröffentlicht 20.08.2010 18:00:02
- Zuletzt bearbeitet 16.06.2026 23:21:47
The ReadMetaFromId3v2 function in taglib.cpp in the TagLib plugin in VideoLAN VLC media player 0.9.0 through 1.1.2 does not properly process ID3v2 tags, which allows remote attackers to cause a denial of service (application crash) via a crafted medi...
CVE-2010-0364
- EPSS 6.58%
- Veröffentlicht 21.01.2010 20:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:00
Stack-based buffer overflow in VideoLAN VLC Media Player 0.8.6 allows user-assisted remote attackers to execute arbitrary code via an ogg file with a crafted Advanced SubStation Alpha Subtitle (.ass) file, probably involving the Dialogue field.
CVE-2009-2484
- EPSS 35.11%
- Veröffentlicht 16.07.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:09:33
Stack-based buffer overflow in the Win32AddConnection function in modules/access/smb.c in VideoLAN VLC media player 0.9.9, when running on Microsoft Windows, allows remote attackers to cause a denial of service (application crash) and possibly execut...
- EPSS 9.22%
- Veröffentlicht 23.03.2009 16:30:01
- Zuletzt bearbeitet 16.06.2026 23:06:23
requests/status.xml in VLC 0.9.8a allows remote attackers to cause a denial of service (stack consumption and crash) via a long input argument in an in_play action.
CVE-2008-5276
- EPSS 7.84%
- Veröffentlicht 03.12.2008 17:30:00
- Zuletzt bearbeitet 16.06.2026 22:59:37
Integer overflow in the ReadRealIndex function in real.c in the Real demuxer plugin in VideoLAN VLC media player 0.9.0 through 0.9.7 allows remote attackers to execute arbitrary code via a malformed RealMedia (.rm) file that triggers a heap-based buf...
CVE-2008-5036
- EPSS 41.44%
- Veröffentlicht 10.11.2008 22:18:34
- Zuletzt bearbeitet 16.06.2026 22:59:07
Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before 0.9.6 might allow user-assisted attackers to execute arbitrary code via an an invalid RealText (rt) subtitle file, related to the ParseRealText function in modules/demux/subtitle.c...
CVE-2008-5032
- EPSS 10.67%
- Veröffentlicht 10.11.2008 16:15:12
- Zuletzt bearbeitet 16.06.2026 22:59:07
Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5 might allow user-assisted attackers to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier orig...