Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
videolan vulnerabilities and exploits
(subscribe to this query)
940
VMScore
CVE-2008-4686
Multiple integer overflows in ty.c in the TY demux plugin (aka the TiVo demuxer) in VideoLAN VLC media player, probably 0.9.4, might allow remote malicious users to execute arbitrary code via a crafted .ty file, a different vulnerability than CVE-2008-4654.
Videolan Vlc Media Player 0.9.0
Videolan Vlc Media Player 0.9.4
Videolan Vlc Media Player 0.9.1
Videolan Vlc Media Player 0.9.2
Videolan Vlc Media Player 0.9.3
2 EDB exploits
946
VMScore
CVE-2008-4654
Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty.c) in VLC Media Player 0.9.0 up to and including 0.9.4 allows remote malicious users to execute arbitrary code via a TiVo TY media file with a header containing a crafted size value.
Videolan Vlc Media Player 0.9.4
Videolan Vlc Media Player 0.9.1
Videolan Vlc Media Player 0.9.2
Videolan Vlc Media Player 0.9
Videolan Vlc Media Player 0.9.3
3 EDB exploits
4 Github repositories
685
VMScore
CVE-2007-6262
A certain ActiveX control in axvlc.dll in VideoLAN VLC 0.8.6 prior to 0.8.6d allows remote malicious users to execute arbitrary code via crafted arguments to the (1) addTarget, (2) getVariable, or (3) setVariable function, resulting from a "bad initialized pointer," aka...
Videolan Vlc Media Player 0.8.6b
Videolan Vlc Media Player 0.8.6
Videolan Vlc Media Player 0.8.6a
1 EDB exploit
605
VMScore
CVE-2018-11516
The vlc_demux_chained_Delete function in input/demux_chained.c in VideoLAN VLC media player 3.0.1 allows remote malicious users to cause a denial of service (heap corruption and application crash) or possibly have unspecified other impact via a crafted .swf file.
Videolan Vlc Media Player 3.0.1
Videolan Vlc Media Player 3.0.0
828
VMScore
CVE-2007-3316
Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player prior to 0.8.6c allow remote malicious users to cause a denial of service (crash) or execute arbitrary code via format string specifiers in (1) an Ogg/Vorbis file, (2) an Ogg/Theora file, (3) a CDDB en...
Videolan Vlc Media Player 0.8.6a
Videolan Vlc Media Player 0.8.6b
668
VMScore
CVE-2014-6440
VideoLAN VLC media player prior to 2.1.5 allows remote malicious users to execute arbitrary code or cause a denial of service.
Videolan Vlc
755
VMScore
CVE-2007-6681
Stack-based buffer overflow in modules/demux/subtitle.c in VideoLAN VLC 0.8.6d allows remote malicious users to execute arbitrary code via a long subtitle in a (1) MicroDvd, (2) SSA, and (3) Vplayer file.
Videolan Vlc
1 EDB exploit
755
VMScore
CVE-2007-6682
Format string vulnerability in the httpd_FileCallBack function (network/httpd.c) in VideoLAN VLC 0.8.6d allows remote malicious users to execute arbitrary code via format string specifiers in the Connection parameter.
Videolan Vlc
1 EDB exploit
1000
VMScore
CVE-2008-0296
Heap-based buffer overflow in the libaccess_realrtsp plugin in VideoLAN VLC Media Player 0.8.6d and previous versions on Windows might allow remote RTSP servers to cause a denial of service (application crash) or execute arbitrary code via a long string.
Videolan Vlc Media Player
1 EDB exploit
NA
CVE-2023-46814
A binary hijacking vulnerability exists within the VideoLAN VLC media player prior to 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYS...
Videolan Vlc Media Player
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »