Integer overflow in the MP4_ReadBox_rdrf function in libmp4.c for VLC 0.8.6e allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MP4 RDRF box that triggers a heap-based buffer overflow, a different vulnerability than CVE-2008-0984.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
videolan vlc 0.8.6e |