Published: 21/06/2007 Updated: 16/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player prior to 0.8.6c allow remote malicious users to cause a denial of service (crash) or execute arbitrary code via format string specifiers in (1) an Ogg/Vorbis file, (2) an Ogg/Theora file, (3) a CDDB entry for a CD Digital Audio (CDDA) file, or (4) Service Announce Protocol (SAP) multicast packets.

Vulnerable Product	Search on Vulmon	Subscribe to Product
videolan vlc media player 0.8.6a
videolan vlc media player 0.8.6b

NVD-CWE-Other http://www.videolan.org/sa0702.html http://www.securityfocus.com/bid/24555 http://secunia.com/advisories/25753 http://www.isecpartners.com/advisories/2007-001-vlc.txt http://www.debian.org/security/2007/dsa-1332 http://security.gentoo.org/glsa/glsa-200707-12.xml http://www.kb.cert.org/vuls/id/200928 http://secunia.com/advisories/25980 http://secunia.com/advisories/26269 http://www.vupen.com/english/advisories/2007/2262 http://osvdb.org/37380 http://osvdb.org/37381 http://osvdb.org/37382 http://osvdb.org/37379 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14600 http://www.securityfocus.com/archive/1/471933/100/0/threaded https://nvd.nist.gov https://www.kb.cert.org/vuls/id/200928

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-3316

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect