Heap-based buffer overflow in the Real Media file parser in VideoLAN VLC media player (Mac OS X)| ID: oval:org.secpod.oval:def:1980 | Date: (C)2011-08-19 (M)2023-11-09 |
| Class: VULNERABILITY | Family: macos |
The host is installed with VideoLAN VLC media player 1.1.x before 1.1.11, and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the DemuxAudioSipr function in real.c in the RealMedia demuxer in the application, which fails to validate user supplied input. Successful exploitation could allow an attacker to execute arbitrary code or crash the service.
| Platform: |
| Apple Mac OS 13 |
| Apple Mac OS 12 |
| Apple Mac OS 11 |
| Apple Mac OS X 10.15 |
| Apple Mac OS X 10.14 |
| Apple Mac OS X 10.12 |
| Apple Mac OS X 10.13 |
| Apple Mac OS X 10.8 |
| Apple Mac OS X 10.9 |
| Apple Mac OS X 10.10 |
| Apple Mac OS X 10.11 |
| Apple Mac OS X Server 10.8 |
| Apple Mac OS X Server 10.9 |
| Apple Mac OS X Server 10.10 |
| Apple Mac OS X Server 10.11 |
