Published: 10/07/2013 Updated: 19/09/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Multiple buffer overflows in VideoLAN VLC media player 2.0.4 and previous versions allow remote malicious users to cause a denial of service (crash) and execute arbitrary code via vectors related to the (1) freetype renderer and (2) HTML subtitle parser.

Vulnerable Product	Search on Vulmon	Subscribe to Product
videolan vlc media player 2.0.3
videolan vlc media player 2.0.2
videolan vlc media player
videolan vlc media player 2.0.0
videolan vlc media player 2.0.1

Multiple buffer overflows have been found in the VideoLAN media player Processing malformed subtitles or movie files could lead to denial of service and potentially the execution of arbitrary code For the stable distribution (wheezy), these problems have been fixed in version 203-5+deb7u1 For the testing distribution (jessie), these problems h ...

Title : VLC media player 204 buffer overflow POC Version : 204 Twoflower Date : 2012-12-06 Vendor : wwwvideolanorg/vlc/ Impact : Med/High Contact : coolkaveh [at] rocketmailcom Twitter : @coolkaveh tested : windows XP SP3 Author : coolkaveh ########################################################################### ...

CWE-119 http://marc.info/?l=oss-security&m=136367945627336&w=2 http://www.securityfocus.com/bid/57079 http://www.videolan.org/security/sa1301.html http://secunia.com/advisories/59793 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17226 https://nvd.nist.gov https://www.debian.org/security/./dsa-2973 https://www.exploit-db.com/exploits/23201/

CVE-2013-1868

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect