Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vlc vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2008-4686
Multiple integer overflows in ty.c in the TY demux plugin (aka the TiVo demuxer) in VideoLAN VLC media player, probably 0.9.4, might allow remote malicious users to execute arbitrary code via a crafted .ty file, a different vulnerability than CVE-2008-4654.
Videolan Vlc Media Player 0.9.0
Videolan Vlc Media Player 0.9.4
Videolan Vlc Media Player 0.9.1
Videolan Vlc Media Player 0.9.2
Videolan Vlc Media Player 0.9.3
2 EDB exploits
6.8
CVSSv2
CVE-2007-6262
A certain ActiveX control in axvlc.dll in VideoLAN VLC 0.8.6 prior to 0.8.6d allows remote malicious users to execute arbitrary code via crafted arguments to the (1) addTarget, (2) getVariable, or (3) setVariable function, resulting from a "bad initialized pointer," aka...
Videolan Vlc Media Player 0.8.6b
Videolan Vlc Media Player 0.8.6
Videolan Vlc Media Player 0.8.6a
1 EDB exploit
9.3
CVSSv2
CVE-2007-3316
Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player prior to 0.8.6c allow remote malicious users to cause a denial of service (crash) or execute arbitrary code via format string specifiers in (1) an Ogg/Vorbis file, (2) an Ogg/Theora file, (3) a CDDB en...
Videolan Vlc Media Player 0.8.6a
Videolan Vlc Media Player 0.8.6b
6.8
CVSSv2
CVE-2018-11516
The vlc_demux_chained_Delete function in input/demux_chained.c in VideoLAN VLC media player 3.0.1 allows remote malicious users to cause a denial of service (heap corruption and application crash) or possibly have unspecified other impact via a crafted .swf file.
Videolan Vlc Media Player 3.0.1
Videolan Vlc Media Player 3.0.0
7.5
CVSSv2
CVE-2007-6681
Stack-based buffer overflow in modules/demux/subtitle.c in VideoLAN VLC 0.8.6d allows remote malicious users to execute arbitrary code via a long subtitle in a (1) MicroDvd, (2) SSA, and (3) Vplayer file.
Videolan Vlc
1 EDB exploit
7.5
CVSSv2
CVE-2014-6440
VideoLAN VLC media player prior to 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service.
Videolan Vlc
7.5
CVSSv2
CVE-2007-6682
Format string vulnerability in the httpd_FileCallBack function (network/httpd.c) in VideoLAN VLC 0.8.6d allows remote malicious users to execute arbitrary code via format string specifiers in the Connection parameter.
Videolan Vlc
1 EDB exploit
6.8
CVSSv2
CVE-2008-1881
Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle.c) in VLC 0.8.6e allows remote malicious users to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681.
Videolan Vlc 0.8.6e
2 EDB exploits
6.8
CVSSv2
CVE-2008-1489
Integer overflow in the MP4_ReadBox_rdrf function in libmp4.c for VLC 0.8.6e allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MP4 RDRF box that triggers a heap-based buffer overflow, a different vulnerability tha...
Videolan Vlc 0.8.6e
1 EDB exploit
5
CVSSv2
CVE-2007-6683
The browser plugin in VideoLAN VLC 0.8.6d allows remote malicious users to overwrite arbitrary files via (1) the :demuxdump-file option in a filename in a playlist, or (2) a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability.
Videolan Vlc 0.8.6d
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »