The ReadMetaFromId3v2 function in taglib.cpp in the TagLib plugin in VideoLAN VLC media player 0.9.0 up to and including 1.1.2 does not properly process ID3v2 tags, which allows remote malicious users to cause a denial of service (application crash) via a crafted media file.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
videolan vlc media player 1.0.3 |
||
videolan vlc media player 0.9.0 |
||
videolan vlc media player 0.9.4 |
||
videolan vlc media player 0.9.9a |
||
videolan vlc media player 0.9.10 |
||
videolan vlc media player 0.9.7 |
||
videolan vlc media player 0.9.1 |
||
videolan vlc media player 0.9.8a |
||
videolan vlc media player 1.0.1 |
||
videolan vlc media player 1.1.2 |
||
videolan vlc media player 1.0.0 |
||
videolan vlc media player 0.9.5 |
||
videolan vlc media player 1.0.4 |
||
videolan vlc media player 1.1.0 |
||
videolan vlc media player 1.0.2 |
||
videolan vlc media player 0.9.2 |
||
videolan vlc media player 0.9.9 |
||
videolan vlc media player 1.1.1 |
||
videolan vlc media player 1.0.6 |
||
videolan vlc media player 1.0.5 |
||
videolan vlc media player 0.9.3 |
||
videolan vlc media player 0.9.6 |
Vulmon