Download
| Alert*
oval:org.secpod.oval:def:14952
The host is installed with VideoLAN VLC media player before 2.0.4 and is prone to multiple buffer overflows vulnerability. The flaw is present in the application, which fails to handle vectors related to the (1) freetype renderer and (2) HTML subtitle parser. Successful exploitation could allow atta ... oval:org.secpod.oval:def:14950 The host is installed with VideoLAN VLC media player before 2.0.4 and is prone to denial of service vulnerability. The flaw is present in the SHAddToRecentDocs function, which fails to handle a crafted file name that triggers an incorrect string-length calculation when the file is added to VLC. Succ ... oval:org.secpod.oval:def:14951 The host is installed with VideoLAN VLC media player before 2.0.4 and is prone to denial of service vulnerability. The flaw is present in the SHAddToRecentDocs function, which fails to handle a crafted file name that triggers an incorrect string-length calculation when the file is added to VLC. Succ ... oval:org.secpod.oval:def:16011 The host is installed with VideoLAN VLC media player 2.0.8 or earlier and is prone to an unspecified vulnerability. The flaw is present in the application, which fails to handle a long string in a URL in a m3u file. Successful exploitation allows remote attackers to cause a denial of service (crash) ... oval:org.secpod.oval:def:14949 The host is installed with VideoLAN VLC media player before 2.0.4 and is prone to multiple buffer overflows vulnerability. The flaw is present in the application, which fails to handle vectors related to the (1) freetype renderer and (2) HTML subtitle parser. Successful exploitation could allow remo ... oval:org.secpod.oval:def:16939 The host is installed with VideoLAN VLC Media Player before 2.1.3 and is prone to divide-by-zero error vulnerability. A flaw is present in the application, which fails to handle a zero minimum and maximum data packet size in an ASF file. Successful exploitation allows attackers to cause a denial of ... oval:org.secpod.oval:def:16010 The host is installed with VideoLAN VLC media player before 2.0.8 and is prone to buffer overflow vulnerability. The flaw is present in the mp4a packetizer (modules/packetizer/mpeg4audio.c), which fails to perform adequate boundary checks on user-supplied input. Successful exploitation allows remote ... oval:org.secpod.oval:def:14953 The host is installed with VideoLAN VLC media player before 2.0.5 and is prone to buffer overflow vulnerability. The flaw is present in the ASF Demuxer (modules/demux/asf/asf.c), which fails to handle a crafted ASF movie that triggers an out-of-bounds read. Successful exploitation could allow attack ... oval:org.secpod.oval:def:14948 The host is installed with VideoLAN VLC media player before 2.0.5 and is prone to buffer overflow vulnerability. The flaw is present in the ASF Demuxer (modules/demux/asf/asf.c), which fails to handle a crafted ASF movie that triggers an out-of-bounds read. Successful exploitation could allow remote ... oval:org.secpod.oval:def:6387 The host is installed with VideoLAN VLC media player before 2.0.2 and is prone to a heap based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted OGG file. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4835 The host is installed with VideoLAN VLC media player before 2.0.1 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted MMS:// stream. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:4833 The host is installed with VideoLAN VLC media player before 2.0.1 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted MMS:// stream. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:4834 The host is installed with VideoLAN VLC media player before 2.0.1 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted Real RTSP stream. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4836 The host is installed with VideoLAN VLC media player before 2.0.1 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted Real RTSP stream. Successful exploitation could allow attackers to crash the service. |