cpe:/a:videolan:vlc_media_player:0.8.6d CVE-2008-0295 2008-01-16T17:00:00.000-05:00 2017-09-28T21:30:12.520-04:00 8.5 NETWORK MEDIUM SINGLE_INSTANCE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2008-01-17T10:15:00.000-05:00 BID 27221 SECUNIA 28383 SECUNIA 29284 SECUNIA 29766 VUPEN ADV-2008-0105 DEBIAN DSA-1543 GENTOO GLSA-200803-13 MISC http://aluigi.altervista.org/adv/vlcxhof-adv.txt Heap-based buffer overflow in modules/access/rtsp/real_sdpplin.c in the Xine library, as used in VideoLAN VLC Media Player 0.8.6d and earlier, allows user-assisted remote attackers to cause a denial of service (crash) or execute arbitrary code via long Session Description Protocol (SDP) data.