Videolan

Vlc Media Player

114 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2011-2588

  • EPSS 2.49%
  • Veröffentlicht 27.07.2011 02:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in the AVI_ChunkRead_strf function in libavi.c in the AVI demuxer in VideoLAN VLC media player before 1.1.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a ...

6.8

CVE-2011-1931

  • EPSS 1.85%
  • Veröffentlicht 07.07.2011 21:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of an unspecified array,...

9.3

CVE-2011-2194

  • EPSS 15.86%
  • Veröffentlicht 24.06.2011 20:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer ov...

6.8

CVE-2011-1684

  • EPSS 4.94%
  • Veröffentlicht 03.05.2011 20:55:11
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in the MP4_ReadBox_skcr function in libmp4.c in the MP4 demultiplexer in VideoLAN VLC media player 1.x before 1.1.9 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code...

7.6

CVE-2011-1087

Exploit
  • EPSS 5.54%
  • Veröffentlicht 03.05.2011 19:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Buffer overflow in VideoLAN VLC media player 1.0.5 allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .mp3 file that is played during bookmark ...

9.3

CVE-2010-3275

Exploit
  • EPSS 86.23%
  • Veröffentlicht 28.03.2011 16:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability."

9.3

CVE-2010-3276

Exploit
  • EPSS 8.56%
  • Veröffentlicht 28.03.2011 16:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an NSV file.

9.3

CVE-2011-0531

  • EPSS 73.25%
  • Veröffentlicht 07.02.2011 21:00:16
  • Zuletzt bearbeitet 11.04.2025 00:51:21

demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary commands via a crafted MKV (WebM or Matroska) file that triggers memory co...

6.8

CVE-2011-0522

Exploit
  • EPSS 66.39%
  • Veröffentlicht 07.02.2011 21:00:15
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The StripTags function in (1) the USF decoder (modules/codec/subtitles/subsdec.c) and (2) the Text decoder (modules/codec/subtitles/subsusf.c) in VideoLAN VLC Media Player 1.1 before 1.1.6-rc allows remote attackers to execute arbitrary code via a su...

9.3

CVE-2011-0021

  • EPSS 10.31%
  • Veröffentlicht 25.01.2011 19:00:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple heap-based buffer overflows in cdg.c in the CDG decoder in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted CDG video.