Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
videolan vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2017-8310
Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows malicious users to read data beyond allocated memory and potentially crash the process (causing a denial of service) via a crafted subtitles file.
Videolan Vlc Media Player 2.2.4
Videolan Vlc Media Player 2.2.2
Videolan Vlc Media Player 2.2.3
Videolan Vlc Media Player 2.2.1
Videolan Vlc Media Player 2.2.0
Videolan Vlc Media Player 2.2.5
383
VMScore
CVE-2017-8312
Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows malicious users to read heap uninitialized data via a crafted subtitles file.
Videolan Vlc Media Player
Debian Debian Linux 8.0
668
VMScore
CVE-2014-6440
VideoLAN VLC media player prior to 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service.
Videolan Vlc
755
VMScore
CVE-2016-5108
Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player prior to 2.2.4 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted QuickTime IMA file.
Debian Debian Linux 8.0
Videolan Vlc Media Player
1 EDB exploit
383
VMScore
CVE-2016-3941
Buffer overflow in the AStreamPeekStream function in input/stream.c in VideoLAN VLC media player prior to 2.2.0 allows remote malicious users to cause a denial of service (crash) via a crafted wav file, related to "seek across EOF."
Videolan Vlc Media Player
Canonical Ubuntu Linux 14.04
605
VMScore
CVE-2015-5949
VideoLAN VLC media player 2.2.1 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP file, which triggers the freeing of arbitrary pointers.
Videolan Vlc Media Player
383
VMScore
CVE-2014-9743
Cross-site scripting (XSS) vulnerability in the httpd_HtmlError function in network/httpd.c in the web interface in VideoLAN VLC Media Player prior to 2.2.0 allows remote malicious users to inject arbitrary web script or HTML via the path info.
Videolan Vlc Media Player
685
VMScore
CVE-2014-9597
The picture_pool_Delete function in misc/picture_pool.c in VideoLAN VLC media player 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service (DEP violation and application crash) via a crafted FLV file.
Videolan Vlc Media Player 2.1.5
1 EDB exploit
1 Article
685
VMScore
CVE-2014-9598
The picture_Release function in misc/picture.c in VideoLAN VLC media player 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service (write access violation) via a crafted M2V file.
Videolan Vlc Media Player 2.1.5
1 EDB exploit
1 Article
668
VMScore
CVE-2010-2062
Integer underflow in the real_get_rdt_chunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player prior to 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote malicious users to execute arbitrary code via a crafted length valu...
Videolan Vlc Media Player 0.8.6b
Videolan Vlc Media Player 0.7.2
Videolan Vlc Media Player 0.8.6g
Videolan Vlc Media Player 0.8.1337
Videolan Vlc Media Player 0.5.0
Videolan Vlc Media Player 0.8.4a
Videolan Vlc Media Player 0.8.0
Videolan Vlc Media Player 0.9.0
Videolan Vlc Media Player 0.9.4
Videolan Vlc Media Player 0.8.5
Videolan Vlc Media Player 0.9.9a
Videolan Vlc Media Player 0.6.2
Videolan Vlc Media Player 0.8.6h
Videolan Vlc Media Player 0.9.10
Videolan Vlc Media Player 0.8.4
Videolan Vlc Media Player 0.8.6
Videolan Vlc Media Player 0.8.6c
Videolan Vlc Media Player 0.8.6i
Videolan Vlc Media Player 0.5.2
Videolan Vlc Media Player 0.7.0
Videolan Vlc Media Player 0.9.1
Videolan Vlc Media Player 0.9.8a
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »