Download
| Alert*
oval:org.secpod.oval:def:20732
The host is installed with VideoLAN VLC Media Player before 0.8.6g and is prone to integer overflow vulnerability. A flaw is present in the application, which does not properly handle a crafted OGG file, which triggers a heap overflow. Successful exploitation allows remote attackers to execute arbit ... oval:org.mitre.oval:def:8013 Several local (remote) vulnerabilities have been discovered in libvorbis, a library for the Vorbis general-purpose compressed audio codec. The Common Vulnerabilities and Exposures project identifies the following problems: libvorbis does not properly handle a zero value which allows remote attackers ... oval:org.secpod.oval:def:301292 Will Drewry of the Google Security Team reported several vulnerabilities in how libvorbis processed audio data. An attacker could create a carefuly crafted OGG audio file in such a way that it would cause an application linked to libvorbis to crash or possibly execute arbitray code when opened . The ... oval:org.secpod.oval:def:700390 It was discovered that libvorbis did not correctly handle certain malformed ogg files. If a user were tricked into opening a specially crafted ogg file with an application that uses libvorbis, an attacker could execute arbitrary code with the user"s privileges. USN-682-1 provided updated libvorbis ... |