Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
videolan vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2017-8312
Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows malicious users to read heap uninitialized data via a crafted subtitles file.
Videolan Vlc Media Player
Debian Debian Linux 8.0
5.5
CVSSv3
CVE-2017-8313
Heap out-of-bound read in ParseJSS in VideoLAN VLC prior to 2.2.5 due to missing check of string termination allows malicious users to read data beyond allocated memory and potentially crash the process via a crafted subtitles file.
Videolan Vlc Media Player
9.8
CVSSv3
CVE-2014-6440
VideoLAN VLC media player prior to 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service.
Videolan Vlc
9.8
CVSSv3
CVE-2016-5108
Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player prior to 2.2.4 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted QuickTime IMA file.
Debian Debian Linux 8.0
Videolan Vlc Media Player
1 EDB exploit
5.5
CVSSv3
CVE-2016-3941
Buffer overflow in the AStreamPeekStream function in input/stream.c in VideoLAN VLC media player prior to 2.2.0 allows remote malicious users to cause a denial of service (crash) via a crafted wav file, related to "seek across EOF."
Videolan Vlc Media Player
Canonical Ubuntu Linux 14.04
NA
CVE-2015-5949
VideoLAN VLC media player 2.2.1 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP file, which triggers the freeing of arbitrary pointers.
Videolan Vlc Media Player
NA
CVE-2014-9743
Cross-site scripting (XSS) vulnerability in the httpd_HtmlError function in network/httpd.c in the web interface in VideoLAN VLC Media Player prior to 2.2.0 allows remote malicious users to inject arbitrary web script or HTML via the path info.
Videolan Vlc Media Player
NA
CVE-2014-9597
The picture_pool_Delete function in misc/picture_pool.c in VideoLAN VLC media player 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service (DEP violation and application crash) via a crafted FLV file.
Videolan Vlc Media Player 2.1.5
1 EDB exploit
1 Article
NA
CVE-2014-9598
The picture_Release function in misc/picture.c in VideoLAN VLC media player 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service (write access violation) via a crafted M2V file.
Videolan Vlc Media Player 2.1.5
1 EDB exploit
1 Article
NA
CVE-2011-3623
Multiple stack-based buffer overflows in VideoLAN VLC media player prior to 1.0.2 allow remote malicious users to execute arbitrary code via (1) a crafted ASF file, related to the ASF_ObjectDumpDebug function in modules/demux/asf/libasf.c; (2) a crafted AVI file, related to the A...
Videolan Vlc Media Player 0.8.6b
Videolan Vlc Media Player 0.7.2
Videolan Vlc Media Player 0.8.6g
Videolan Vlc Media Player 0.8.1337
Videolan Vlc Media Player 0.5.0
Videolan Vlc Media Player 0.8.4a
Videolan Vlc Media Player 0.8.0
Videolan Vlc Media Player 0.9.0
Videolan Vlc Media Player 0.9.4
Videolan Vlc Media Player 0.8.5
Videolan Vlc Media Player 0.9.9a
Videolan Vlc Media Player 0.6.2
Videolan Vlc Media Player 0.8.6h
Videolan Vlc Media Player 0.9.10
Videolan Vlc Media Player 0.8.4
Videolan Vlc Media Player 0.8.6
Videolan Vlc Media Player 0.8.6c
Videolan Vlc Media Player 0.8.6i
Videolan Vlc Media Player 0.5.2
Videolan Vlc Media Player 0.7.0
Videolan Vlc Media Player
Videolan Vlc Media Player 0.9.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »