Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
videolan vlc media player vulnerabilities and exploits
(subscribe to this query)
690
VMScore
CVE-2008-1881
Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle.c) in VLC 0.8.6e allows remote malicious users to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681.
Videolan Vlc 0.8.6e
2 EDB exploits
690
VMScore
CVE-2007-0017
Multiple format string vulnerabilities in (1) the cdio_log_handler function in modules/access/cdda/access.c in the CDDA (libcdda_plugin) plugin, and the (2) cdio_log_handler and (3) vcd_log_handler functions in modules/access/vcdx/access.c in the VCDX (libvcdx_plugin) plugin, in ...
Videolan Vlc Media Player 0.7.2
Videolan Vlc Media Player 0.8.4a
Videolan Vlc Media Player 0.8.0
Videolan Vlc Media Player 0.8.5
Videolan Vlc Media Player 0.8.4
Videolan Vlc Media Player 0.8.6
Videolan Vlc Media Player 0.7.0
Videolan Vlc Media Player 0.8.1
Videolan Vlc Media Player 0.7.1
Videolan Vlc Media Player 0.8.2
2 EDB exploits
685
VMScore
CVE-2018-11529
VideoLAN VLC media player 2.2.x is prone to a use after free vulnerability which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed exploit attempts will likely result in denial of service conditions.
Debian Debian Linux 9.0
Videolan Vlc Media Player
1 EDB exploit
1 Article
685
VMScore
CVE-2017-8311
Potential heap based buffer overflow in ParseJSS in VideoLAN VLC prior to 2.2.5 due to skipping NULL terminator in an input string allows malicious users to execute arbitrary code via a crafted subtitles file.
Videolan Vlc Media Player
1 EDB exploit
685
VMScore
CVE-2014-9598
The picture_Release function in misc/picture.c in VideoLAN VLC media player 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service (write access violation) via a crafted M2V file.
Videolan Vlc Media Player 2.1.5
1 EDB exploit
1 Article
685
VMScore
CVE-2014-9597
The picture_pool_Delete function in misc/picture_pool.c in VideoLAN VLC media player 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service (DEP violation and application crash) via a crafted FLV file.
Videolan Vlc Media Player 2.1.5
1 EDB exploit
1 Article
685
VMScore
CVE-2011-1574
Stack-based buffer overflow in the ReadS3M method in load_s3m.cpp in libmodplug prior to 0.8.8.2 allows remote malicious users to execute arbitrary code via a crafted S3M file.
Konstanty Bialkowski Libmodplug 0.8.5
Konstanty Bialkowski Libmodplug
Konstanty Bialkowski Libmodplug 0.8.7
Konstanty Bialkowski Libmodplug 0.8.4
Konstanty Bialkowski Libmodplug 0.8.8
Konstanty Bialkowski Libmodplug 0.8
Konstanty Bialkowski Libmodplug 0.8.6
1 EDB exploit
685
VMScore
CVE-2011-0522
The StripTags function in (1) the USF decoder (modules/codec/subtitles/subsdec.c) and (2) the Text decoder (modules/codec/subtitles/subsusf.c) in VideoLAN VLC Media Player 1.1 prior to 1.1.6-rc allows remote malicious users to execute arbitrary code via a subtitle with an opening...
Videolan Vlc Media Player 1.1.3
Videolan Vlc Media Player 1.1.4
Videolan Vlc Media Player 1.1.5
Videolan Vlc Media Player 1.1.2
Videolan Vlc Media Player 1.1.0
Videolan Vlc Media Player 1.1.6
Videolan Vlc Media Player 1.1.1
1 EDB exploit
685
VMScore
CVE-2008-4558
Array index error in VLC media player 0.9.2 allows remote malicious users to overwrite arbitrary memory and execute arbitrary code via an XSPF playlist file with a negative identifier tag, which passes a signed comparison.
Videolan Vlc Media Player 0.9.2
1 EDB exploit
685
VMScore
CVE-2008-3794
Integer signedness error in the mms_ReceiveCommand function in modules/access/mms/mmstu.c in VLC Media Player 0.8.6i allows remote malicious users to execute arbitrary code via a crafted mmst link with a negative size value, which bypasses a size check and triggers an integer ove...
Videolan Vlc Media Player 0.8.6i
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »