Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
videolan vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4654
Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty.c) in VLC Media Player 0.9.0 up to and including 0.9.4 allows remote malicious users to execute arbitrary code via a TiVo TY media file with a header containing a crafted size value.
Videolan Vlc Media Player 0.9.4
Videolan Vlc Media Player 0.9.1
Videolan Vlc Media Player 0.9.2
Videolan Vlc Media Player 0.9
Videolan Vlc Media Player 0.9.3
3 EDB exploits
4 Github repositories
NA
CVE-2008-4686
Multiple integer overflows in ty.c in the TY demux plugin (aka the TiVo demuxer) in VideoLAN VLC media player, probably 0.9.4, might allow remote malicious users to execute arbitrary code via a crafted .ty file, a different vulnerability than CVE-2008-4654.
Videolan Vlc Media Player 0.9.0
Videolan Vlc Media Player 0.9.4
Videolan Vlc Media Player 0.9.1
Videolan Vlc Media Player 0.9.2
Videolan Vlc Media Player 0.9.3
2 EDB exploits
NA
CVE-2007-6262
A certain ActiveX control in axvlc.dll in VideoLAN VLC 0.8.6 prior to 0.8.6d allows remote malicious users to execute arbitrary code via crafted arguments to the (1) addTarget, (2) getVariable, or (3) setVariable function, resulting from a "bad initialized pointer," aka...
Videolan Vlc Media Player 0.8.6b
Videolan Vlc Media Player 0.8.6
Videolan Vlc Media Player 0.8.6a
1 EDB exploit
8.8
CVSSv3
CVE-2018-11516
The vlc_demux_chained_Delete function in input/demux_chained.c in VideoLAN VLC media player 3.0.1 allows remote malicious users to cause a denial of service (heap corruption and application crash) or possibly have unspecified other impact via a crafted .swf file.
Videolan Vlc Media Player 3.0.1
Videolan Vlc Media Player 3.0.0
NA
CVE-2007-3316
Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player prior to 0.8.6c allow remote malicious users to cause a denial of service (crash) or execute arbitrary code via format string specifiers in (1) an Ogg/Vorbis file, (2) an Ogg/Theora file, (3) a CDDB en...
Videolan Vlc Media Player 0.8.6a
Videolan Vlc Media Player 0.8.6b
NA
CVE-2007-6681
Stack-based buffer overflow in modules/demux/subtitle.c in VideoLAN VLC 0.8.6d allows remote malicious users to execute arbitrary code via a long subtitle in a (1) MicroDvd, (2) SSA, and (3) Vplayer file.
Videolan Vlc
1 EDB exploit
9.8
CVSSv3
CVE-2014-6440
VideoLAN VLC media player prior to 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service.
Videolan Vlc
NA
CVE-2008-0296
Heap-based buffer overflow in the libaccess_realrtsp plugin in VideoLAN VLC Media Player 0.8.6d and previous versions on Windows might allow remote RTSP servers to cause a denial of service (application crash) or execute arbitrary code via a long string.
Videolan Vlc Media Player
1 EDB exploit
7.8
CVSSv3
CVE-2023-46814
A binary hijacking vulnerability exists within the VideoLAN VLC media player prior to 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYS...
Videolan Vlc Media Player
NA
CVE-2007-6682
Format string vulnerability in the httpd_FileCallBack function (network/httpd.c) in VideoLAN VLC 0.8.6d allows remote malicious users to execute arbitrary code via format string specifiers in the Connection parameter.
Videolan Vlc
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »