MidnightBSD

Advisories for videolan

CVE-2008-1769 MEDIUM

VLC before 0.8.6f allow remote attackers to cause a denial of service (crash) via a crafted Cinepak file that triggers an out-of-bounds array access and memory corruption.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
videolan vlc 0.6.1
videolan vlc 0.2.73
videolan vlc 0.8.0
videolan vlc 0.5.1
videolan vlc 0.8.5
videolan vlc 0.6.0
videolan vlc 0.7.2
videolan vlc 0.1.99b
videolan vlc 0.2.60
videolan vlc 0.1.99e
videolan vlc 0.2.0
videolan vlc 0.4.3
videolan vlc 0.3.1
videolan vlc 0.7.0
videolan vlc 0.1.99i
videolan vlc 0.2.70
videolan vlc 0.4.2
videolan vlc 0.2.71
videolan vlc 0.1.99c
videolan vlc 0.8.4
videolan vlc 0.8.4a
videolan vlc 0.3.0
videolan vlc 0.1.99a
videolan vlc 0.8.6a
videolan vlc 0.8.6e
videolan vlc 0.2.61
videolan vlc 0.2.92
videolan vlc 0.4.1
videolan vlc 0.2.83
videolan vlc 0.4.6
videolan vlc 0.5.3
videolan vlc 0.7.1
videolan vlc 0.1.99d
videolan vlc 0.2.81
videolan vlc 0.8.2
videolan vlc 0.2.90
videolan vlc 0.2.82
videolan vlc 0.2.50
videolan vlc 0.4.4
videolan vlc 0.6.2
videolan vlc 0.8.1337
videolan vlc 0.1.99f
videolan vlc 0.1.99g
videolan vlc 0.4.0
videolan vlc 0.4.5
videolan vlc 0.2.91
videolan vlc 0.1.99h
videolan vlc 0.2.63
videolan vlc 0.2.72
videolan vlc 0.5.2
videolan vlc 0.8.6
videolan vlc 0.8.6c
videolan vlc 0.2.80
videolan vlc 0.2.62
videolan vlc 0.5.0
videolan vlc 0.4.3_ac3
videolan vlc 0.8.6d
videolan vlc 0.8.6b
videolan vlc 0.1.99
videolan vlc 0.8.1
CVE-2008-2147 MEDIUM

Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current working directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
videolan vlc 0.6.1
videolan vlc 0.8.0
videolan vlc 0.5.1
videolan vlc 0.8.2
videolan vlc 0.6.2
videolan vlc 0.8.5
videolan vlc 0.6.0
videolan vlc 0.7.2
videolan vlc 0.5.1a
videolan vlc 0.7.0
videolan vlc *
videolan vlc 0.8.4
videolan vlc 0.5.2
videolan vlc 0.8.4a
videolan vlc 0.8.6c
videolan vlc 0.5.0
videolan vlc 0.8.6a
videolan vlc 0.8.6e
videolan vlc 0.4.6
videolan vlc 0.8.6d
videolan vlc 0.8.6b
videolan vlc 0.8.1
videolan vlc 0.5.3
videolan vlc 0.7.1
CVE-2008-4654 HIGH

Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty.c) in VLC Media Player 0.9.0 through 0.9.4 allows remote attackers to execute arbitrary code via a TiVo TY media file with a header containing a crafted size value.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.9.1
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9
videolan vlc_media_player 0.9.2
CVE-2008-4686 HIGH

Multiple integer overflows in ty.c in the TY demux plugin (aka the TiVo demuxer) in VideoLAN VLC media player, probably 0.9.4, might allow remote attackers to execute arbitrary code via a crafted .ty file, a different vulnerability than CVE-2008-4654.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.9.1
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.2
CVE-2008-5032 HIGH

Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5 might allow user-assisted attackers to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier originally included an issue related to RealText, but that issue has been assigned a separate identifier, CVE-2008-5036.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.8.6f
videolan vlc_media_player 0.8.6a
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.7.1a
videolan vlc_media_player 0.8.6b
videolan vlc_media_player 0.7.1
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.8.1
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.8.6d
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.8.6c
videolan vlc_media_player 0.8.6i
videolan vlc_media_player 0.9.1
videolan vlc_media_player 0.8.6e
videolan vlc_media_player 0.8.6g
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.9
videolan vlc_media_player 0.7.2
videolan vlc_media_player 0.8.4a
videolan vlc_media_player 0.6.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.8.6h
CVE-2008-5036 HIGH

Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before 0.9.6 might allow user-assisted attackers to execute arbitrary code via an an invalid RealText (rt) subtitle file, related to the ParseRealText function in modules/demux/subtitle.c. NOTE: this issue was SPLIT from CVE-2008-5032 on 20081110.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.9.1
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.9.5
CVE-2008-5276 HIGH

Integer overflow in the ReadRealIndex function in real.c in the Real demuxer plugin in VideoLAN VLC media player 0.9.0 through 0.9.7 allows remote attackers to execute arbitrary code via a malformed RealMedia (.rm) file that triggers a heap-based buffer overflow.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.9.1
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.9.7
videolan vlc_media_player 0.9.8
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.9.5
CVE-2009-2484 HIGH

Stack-based buffer overflow in the Win32AddConnection function in modules/access/smb.c in VideoLAN VLC media player 0.9.9, when running on Microsoft Windows, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long smb URI in a playlist file.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.9.9
CVE-2010-0364 HIGH

Stack-based buffer overflow in VideoLAN VLC Media Player 0.8.6 allows user-assisted remote attackers to execute arbitrary code via an ogg file with a crafted Advanced SubStation Alpha Subtitle (.ass) file, probably involving the Dialogue field.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.6
CVE-2010-1443 MEDIUM

The parse_track_node function in modules/demux/playlist/xspf.c in the XSPF playlist parser in VideoLAN VLC media player before 1.0.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty location element in an XML Shareable Playlist Format (XSPF) document.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.8.6f
videolan vlc_media_player 0.8.6a
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.8.6b
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.7.1
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1337
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.8.6d
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.8.6c
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.8.6i
videolan vlc_media_player 0.9.1
videolan vlc_media_player 1.0.1
videolan vlc_media_player 0.8.6e
videolan vlc_media_player 0.8.6g
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 0.8.4a
videolan vlc_media_player 0.6.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.8.6h
videolan vlc_media_player 0.9.9a
CVE-2010-1444 HIGH

The ZIP archive decompressor in VideoLAN VLC media player before 1.0.6 allows remote attackers to cause a denial of service (invalid memory access and application crash) or possibly execute arbitrary code via a crafted archive.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.8.6f
videolan vlc_media_player 0.8.6a
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.8.6b
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.7.1
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1337
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.8.6d
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.8.6c
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.8.6i
videolan vlc_media_player 0.9.1
videolan vlc_media_player 1.0.1
videolan vlc_media_player 0.8.6e
videolan vlc_media_player 0.8.6g
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 0.8.4a
videolan vlc_media_player 0.6.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.8.6h
videolan vlc_media_player 0.9.9a
CVE-2010-2062 HIGH

Integer underflow in the real_get_rdt_chunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.8.6f
videolan vlc_media_player 0.8.6a
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.8.6b
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.7.1
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1337
videolan vlc_media_player 0.8.1
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.8.6d
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.8.6c
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.8.6i
videolan vlc_media_player 0.9.1
videolan vlc_media_player 0.8.6e
videolan vlc_media_player 0.8.6g
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 0.8.4a
videolan vlc_media_player 0.6.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.8.6h
videolan vlc_media_player 0.9.9a
CVE-2010-2937 MEDIUM

The ReadMetaFromId3v2 function in taglib.cpp in the TagLib plugin in VideoLAN VLC media player 0.9.0 through 1.1.2 does not properly process ID3v2 tags, which allows remote attackers to cause a denial of service (application crash) via a crafted media file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.9.1
videolan vlc_media_player 1.0.1
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 1.1.0
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.9.9
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.9.4
videolan vlc_media_player 1.0.3
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.9.7
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.9.9a
CVE-2010-3124 HIGH

Untrusted search path vulnerability in bin/winvlc.c in VLC Media Player 1.1.3 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wintab32.dll that is located in the same folder as a .mp3 file.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.2.0
videolan vlc_media_player 0.1.99f
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 0.6.2
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 0.2.61
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
videolan vlc_media_player 0.2.92
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
videolan vlc_media_player 0.2.90
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
videolan vlc_media_player 0.4.3
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
videolan vlc_media_player 0.2.73
videolan vlc_media_player 0.4.6
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.1.99h
CVE-2010-3275 HIGH

libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability."

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.2.0
videolan vlc_media_player 0.1.99f
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.1.4
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 0.6.2
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 0.2.61
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
videolan vlc_media_player 0.2.92
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
videolan vlc_media_player 0.2.90
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.5
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
videolan vlc_media_player 0.4.3
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
videolan vlc_media_player 0.2.73
videolan vlc_media_player 0.4.6
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.1.99h
CVE-2010-3276 HIGH

libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an NSV file.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.2.0
videolan vlc_media_player 0.1.99f
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.1.4
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 0.6.2
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 0.2.61
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
videolan vlc_media_player 0.2.92
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
videolan vlc_media_player 0.2.90
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.5
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
videolan vlc_media_player 0.4.3
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
videolan vlc_media_player 0.2.73
videolan vlc_media_player 0.4.6
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.1.99h
CVE-2010-3907 HIGH

Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a zero i_subpackets value in a Real Media file, leading to a heap-based buffer overflow.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.2.0
videolan vlc_media_player 0.1.99f
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.1.4
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 0.6.2
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 0.2.61
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
videolan vlc_media_player 0.2.92
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
videolan vlc_media_player 0.2.90
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
videolan vlc_media_player 0.4.3
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
videolan vlc_media_player 0.2.73
videolan vlc_media_player 0.4.6
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.1.99h
CVE-2011-0021 HIGH

Multiple heap-based buffer overflows in cdg.c in the CDG decoder in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted CDG video.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.2.0
videolan vlc_media_player 0.1.99f
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.1.4
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 0.6.2
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 0.2.61
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
videolan vlc_media_player 0.2.92
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
videolan vlc_media_player 0.2.90
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
videolan vlc_media_player 0.4.3
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
videolan vlc_media_player 0.2.73
videolan vlc_media_player 0.4.6
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.1.99h
CVE-2011-0522 MEDIUM

The StripTags function in (1) the USF decoder (modules/codec/subtitles/subsdec.c) and (2) the Text decoder (modules/codec/subtitles/subsusf.c) in VideoLAN VLC Media Player 1.1 before 1.1.6-rc allows remote attackers to execute arbitrary code via a subtitle with an opening "<" without a closing ">" in an MKV file, which triggers heap memory corruption, as demonstrated using refined-australia-blu720p-sample.mkv.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 1.1.1
videolan vlc_media_player 1.1.4
videolan vlc_media_player 1.1.0
videolan vlc_media_player 1.1.6
videolan vlc_media_player 1.1.3
videolan vlc_media_player 1.1.5
videolan vlc_media_player 1.1.2
CVE-2011-0531 HIGH

demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary commands via a crafted MKV (WebM or Matroska) file that triggers memory corruption, related to "class mismatching" and the MKV_IS_ID macro.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.2.0
videolan vlc_media_player 0.1.99f
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.1.4
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 0.6.2
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 0.2.61
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
videolan vlc_media_player 0.2.92
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
videolan vlc_media_player 0.2.90
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.5
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
videolan vlc_media_player 0.4.3
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
videolan vlc_media_player 0.2.73
videolan vlc_media_player 0.4.6
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.1.99h
CVE-2011-1087 HIGH

Buffer overflow in VideoLAN VLC media player 1.0.5 allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .mp3 file that is played during bookmark creation.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 1.0.5
CVE-2011-1684 MEDIUM

Heap-based buffer overflow in the MP4_ReadBox_skcr function in libmp4.c in the MP4 demultiplexer in VideoLAN VLC media player 1.x before 1.1.9 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted MP4 file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 1.0.0
videolan vlc_media_player 1.1.8
videolan vlc_media_player 1.1.4
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.1.0
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 1.1.5
videolan vlc_media_player 1.1.2
videolan vlc_media_player 1.0.4
videolan vlc_media_player 1.0.3
videolan vlc_media_player 1.1.1
videolan vlc_media_player 1.1.3
videolan vlc_media_player 1.1.7
CVE-2011-1931 MEDIUM

sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of an unspecified array, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a malformed AMV file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
ffmpeg ffmpeg 0.4.0
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
libav libav 0.5
ffmpeg ffmpeg 0.6
videolan vlc_media_player 0.9.4
ffmpeg ffmpeg 0.4.3
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
ffmpeg ffmpeg 0.3.4
videolan vlc_media_player 1.1.8
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
ffmpeg ffmpeg 0.3.1
libav libav 0.4.1
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
libav libav 0.6.1
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
ffmpeg ffmpeg 0.4.4
videolan vlc_media_player 0.2.92
libav libav 0.4.6
ffmpeg ffmpeg 0.4.7
ffmpeg ffmpeg 0.4.5
ffmpeg ffmpeg 0.4.8
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
ffmpeg ffmpeg 0.5.3
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1
ffmpeg ffmpeg 0.3.2
videolan vlc_media_player 0.2.90
libav libav 0.4.4
libav libav 0.4.9
videolan vlc_media_player 0.9.2
libav libav 0.6
videolan vlc_media_player 0.9.3
libav libav 0.3.4
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
ffmpeg ffmpeg 0.3
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
ffmpeg ffmpeg 0.3.3
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
libav libav 0.4.2
videolan vlc_media_player 0.4.6
libav libav *
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.8.4
ffmpeg ffmpeg 0.4.9
videolan vlc_media_player 0.2.0
libav libav 0.4.5
videolan vlc_media_player 1.1.4.1
libav libav 0.4.0
libav libav 0.4.3
videolan vlc_media_player 0.1.99f
libav libav 0.3.3
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.1.4
ffmpeg ffmpeg 0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
ffmpeg ffmpeg 0.5.4
videolan vlc_media_player 0.6.2
libav libav 0.4.7
ffmpeg ffmpeg *
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
ffmpeg ffmpeg 0.5.1
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 1.1.7
ffmpeg ffmpeg 0.6.1
libav libav 0.3.2
videolan vlc_media_player 0.2.61
libav libav 0.3.1
libav libav 0.5.4
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
ffmpeg ffmpeg 0.4.6
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
libav libav 0.3
libav libav 0.4.8
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
ffmpeg ffmpeg 0.5.2
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 1.1.5
videolan vlc_media_player 0.4.3
ffmpeg ffmpeg 0.4.2
videolan vlc_media_player 0.2.73
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.1.99h
CVE-2011-2194 HIGH

Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.6f
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.8.6a
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.8.6b
videolan vlc_media_player 0.9.4
videolan vlc_media_player 1.0.3
videolan vlc_media_player 1.1.4.1
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.8.6d
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.8.6c
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.9.10
videolan vlc_media_player 1.1.8
videolan vlc_media_player 0.8.6i
videolan vlc_media_player 1.1.4
videolan vlc_media_player 0.9.1
videolan vlc_media_player 1.0.1
videolan vlc_media_player 0.8.6e
videolan vlc_media_player 0.8.6g
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 1.1.5
videolan vlc_media_player 1.1.2
videolan vlc_media_player 1.1.9
videolan vlc_media_player 1.0.4
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 1.1.7
videolan vlc_media_player 0.8.6h
videolan vlc_media_player 0.9.9a
CVE-2011-2587 MEDIUM

Heap-based buffer overflow in the DemuxAudioSipr function in real.c in the RealMedia demuxer in VideoLAN VLC media player 1.1.x before 1.1.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Real Media file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 1.1.8
videolan vlc_media_player 1.1.4
videolan vlc_media_player 1.1.10.1
videolan vlc_media_player 1.1.0
videolan vlc_media_player 1.1.6
videolan vlc_media_player 1.1.5
videolan vlc_media_player 1.1.2
videolan vlc_media_player 1.1.9
videolan vlc_media_player 1.1.1
videolan vlc_media_player 1.1.10
videolan vlc_media_player 1.1.4.1
videolan vlc_media_player 1.1.3
videolan vlc_media_player 1.1.7
CVE-2011-2588 MEDIUM

Heap-based buffer overflow in the AVI_ChunkRead_strf function in libavi.c in the AVI demuxer in VideoLAN VLC media player before 1.1.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted AVI media file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.2.0
videolan vlc_media_player 0.1.99f
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 1.1.8
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.1.4
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 0.6.2
videolan vlc_media_player 1.1.9
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 1.1.7
videolan vlc_media_player 0.2.61
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
videolan vlc_media_player 0.2.92
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
videolan vlc_media_player 0.2.90
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.5
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
videolan vlc_media_player 0.4.3
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
videolan vlc_media_player 1.1.10
videolan vlc_media_player 0.2.73
videolan vlc_media_player 0.4.6
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.1.99h
CVE-2011-3623 HIGH

Multiple stack-based buffer overflows in VideoLAN VLC media player before 1.0.2 allow remote attackers to execute arbitrary code via (1) a crafted ASF file, related to the ASF_ObjectDumpDebug function in modules/demux/asf/libasf.c; (2) a crafted AVI file, related to the AVI_ChunkDumpDebug_level function in modules/demux/avi/libavi.c; or (3) a crafted MP4 file, related to the __MP4_BoxDumpStructure function in modules/demux/mp4/libmp4.c.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.8.6f
videolan vlc_media_player 0.8.6a
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.8.6b
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.7.1
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1337
videolan vlc_media_player 0.8.1
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.8.6d
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.8.6c
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.6.1
videolan vlc_media_player *
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.8.6i
videolan vlc_media_player 0.9.1
videolan vlc_media_player 0.8.6e
videolan vlc_media_player 0.8.6g
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 0.8.4a
videolan vlc_media_player 0.6.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.8.6h
videolan vlc_media_player 0.9.9a
CVE-2012-0023 HIGH

Double free vulnerability in the get_chunk_header function in modules/demux/ty.c in VideoLAN VLC media player 0.9.0 through 1.1.12 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TiVo (TY) file.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
videolan vlc_media_player 1.1.10.1
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.9.4
videolan vlc_media_player 1.0.3
videolan vlc_media_player 1.1.11
videolan vlc_media_player 1.1.4.1
videolan vlc_media_player 0.9.2
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 1.0.0
videolan vlc_media_player 0.9.10
videolan vlc_media_player 1.1.8
videolan vlc_media_player 1.1.4
videolan vlc_media_player 0.9.1
videolan vlc_media_player 1.0.1
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.9.6
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 1.1.5
videolan vlc_media_player 1.1.2
videolan vlc_media_player 1.1.9
videolan vlc_media_player 1.0.4
videolan vlc_media_player 1.1.12
videolan vlc_media_player 1.1.1
videolan vlc_media_player 1.1.10
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.9.5
videolan vlc_media_player 1.1.7
videolan vlc_media_player 0.9.9a
CVE-2012-0904 MEDIUM

VLC media player 1.1.11 allows remote attackers to cause a denial of service (crash) via a long string in an amr file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
videolan vlc_media_player 1.1.11
CVE-2012-1775 HIGH

Stack-based buffer overflow in VideoLAN VLC media player before 2.0.1 allows remote attackers to execute arbitrary code via a crafted MMS:// stream.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.8.6c
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 1.1.8
videolan vlc_media_player 0.8.6i
videolan vlc_media_player 1.0.1
videolan vlc_media_player 0.9.8
videolan vlc_media_player 1.0.5
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.9.7
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
videolan vlc_media_player 0.2.92
videolan vlc_media_player 0.8.6a
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1337
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.1.11
videolan vlc_media_player 0.2.90
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.4.3-ac3
videolan vlc_media_player 0.8.6g
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
videolan vlc_media_player 1.1.10
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.4.6
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.1.99c
videolan vlc_media_player 0.8.6b
videolan vlc_media_player 0.7.1
videolan vlc_media_player 0.2.0
videolan vlc_media_player 1.1.4.1
videolan vlc_media_player 0.8.6d
videolan vlc_media_player 0.1.99f
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.1.4
videolan vlc_media_player 0.8.6e
videolan vlc_media_player 0.9
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 0.6.2
videolan vlc_media_player 1.1.9
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 1.1.7
videolan vlc_media_player 0.8.6h
videolan vlc_media_player 0.9.9a
videolan vlc_media_player 0.2.61
videolan vlc_media_player 0.8.6f
videolan vlc_media_player 1.1.10.1
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
videolan vlc_media_player 0.7.1a
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.2.50
videolan vlc_media_player 0.6.1
videolan vlc_media_player 0.1.99a
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
videolan vlc_media_player 1.1.13
videolan vlc_media_player 0.9.1
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.8.4a
videolan vlc_media_player 1.1.5
videolan vlc_media_player 0.4.3
videolan vlc_media_player 0.2.73
videolan vlc_media_player 0.1.99d
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.1.99h
CVE-2012-1776 HIGH

Multiple heap-based buffer overflows in VideoLAN VLC media player before 2.0.1 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Real RTSP stream.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.8.6c
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 1.1.8
videolan vlc_media_player 0.8.6i
videolan vlc_media_player 1.0.1
videolan vlc_media_player 0.9.8
videolan vlc_media_player 1.0.5
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.9.7
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
videolan vlc_media_player 0.2.92
videolan vlc_media_player 0.8.6a
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1337
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.1.11
videolan vlc_media_player 0.2.90
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.4.3-ac3
videolan vlc_media_player 0.8.6g
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
videolan vlc_media_player 1.1.10
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.4.6
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.1.99c
videolan vlc_media_player 0.8.6b
videolan vlc_media_player 0.7.1
videolan vlc_media_player 0.2.0
videolan vlc_media_player 1.1.4.1
videolan vlc_media_player 0.8.6d
videolan vlc_media_player 0.1.99f
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.1.4
videolan vlc_media_player 0.8.6e
videolan vlc_media_player 0.9
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 0.6.2
videolan vlc_media_player 1.1.9
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 1.1.7
videolan vlc_media_player 0.8.6h
videolan vlc_media_player 0.9.9a
videolan vlc_media_player 0.2.61
videolan vlc_media_player 0.8.6f
videolan vlc_media_player 1.1.10.1
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
videolan vlc_media_player 0.7.1a
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.2.50
videolan vlc_media_player 0.6.1
videolan vlc_media_player 0.1.99a
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
videolan vlc_media_player 1.1.13
videolan vlc_media_player 0.9.1
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.8.4a
videolan vlc_media_player 1.1.5
videolan vlc_media_player 0.4.3
videolan vlc_media_player 0.2.73
videolan vlc_media_player 0.1.99d
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.1.99h
CVE-2012-2396 MEDIUM

VideoLAN VLC media player 2.0.1 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted MP4 file.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
videolan vlc_media_player 2.0.1
CVE-2012-3377 MEDIUM

Heap-based buffer overflow in the Ogg_DecodePacket function in the OGG demuxer (modules/demux/ogg.c) in VideoLAN VLC media player before 2.0.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted OGG file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.8.6c
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 1.1.8
videolan vlc_media_player 0.8.6i
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
videolan vlc_media_player 0.2.92
videolan vlc_media_player 0.8.6a
videolan vlc_media_player 2.0.0
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1337
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.1.11
videolan vlc_media_player 0.2.90
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.4.3-ac3
videolan vlc_media_player 0.8.6g
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
videolan vlc_media_player 1.1.10
videolan vlc_media_player 0.9.0
videolan vlc_media_player 0.4.6
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.1.99c
videolan vlc_media_player 0.8.6b
videolan vlc_media_player 0.7.1
videolan vlc_media_player 0.2.0
videolan vlc_media_player 1.1.4.1
videolan vlc_media_player 0.8.6d
videolan vlc_media_player 0.1.99f
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.1.4
videolan vlc_media_player 0.8.6e
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 0.6.2
videolan vlc_media_player 1.1.9
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 1.1.7
videolan vlc_media_player 0.8.6h
videolan vlc_media_player 0.9.9a
videolan vlc_media_player 0.2.61
videolan vlc_media_player 0.8.6f
videolan vlc_media_player 1.1.10.1
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.2.50
videolan vlc_media_player 0.6.1
videolan vlc_media_player 0.1.99a
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
videolan vlc_media_player 1.1.13
videolan vlc_media_player 0.9.1
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.8.4a
videolan vlc_media_player 1.1.5
videolan vlc_media_player 0.4.3
videolan vlc_media_player 0.2.73
videolan vlc_media_player 0.1.99d
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.1.99h
CVE-2012-5855 MEDIUM

The SHAddToRecentDocs function in VideoLAN VLC media player 2.0.4 and earlier might allow user-assisted attackers to cause a denial of service (crash) via a crafted file name that triggers an incorrect string-length calculation when the file is added to VLC. NOTE: it is not clear whether this issue crosses privilege boundaries or whether it can be exploited without user interaction.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
videolan vlc_media_player *
videolan vlc_media_player 2.0.3
videolan vlc_media_player 2.0.0
videolan vlc_media_player 2.0.2
videolan vlc_media_player 2.0.1
CVE-2013-1868 HIGH

Multiple buffer overflows in VideoLAN VLC media player 2.0.4 and earlier allow remote attackers to cause a denial of service (crash) and execute arbitrary code via vectors related to the (1) freetype renderer and (2) HTML subtitle parser.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player *
videolan vlc_media_player 2.0.3
videolan vlc_media_player 2.0.0
videolan vlc_media_player 2.0.2
videolan vlc_media_player 2.0.1
CVE-2013-1954 MEDIUM

The ASF Demuxer (modules/demux/asf/asf.c) in VideoLAN VLC media player 2.0.5 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted ASF movie that triggers an out-of-bounds read.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player *
videolan vlc_media_player 2.0.3
videolan vlc_media_player 2.0.4
videolan vlc_media_player 2.0.0
videolan vlc_media_player 2.0.2
videolan vlc_media_player 2.0.1
CVE-2013-3245 MEDIUM

plugins/demux/libmkv_plugin.dll in VideoLAN VLC Media Player 2.0.7, and possibly other versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MKV file, possibly involving an integer overflow and out-of-bounds read or heap-based buffer overflow, or an uncaught exception. NOTE: the vendor disputes the severity and claimed vulnerability type of this issue, stating "This PoC crashes VLC, indeed, but does nothing more... this is not an integer overflow error, but an uncaught exception and I doubt that it is exploitable. This uncaught exception makes VLC abort, not execute random code, on my Linux 64bits machine." A PoC posted by the original researcher shows signs of an attacker-controlled out-of-bounds read, but the affected instruction does not involve a register that directly influences control flow

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,CWE-122,CWE-125,

Products Affected

Vendor Product Version
videolan vlc_media_player 2.0.7
CVE-2013-3564 MEDIUM

The web interface in VideoLAN VLC media player before 2.0.7 has no access control which allows remote attackers to view directory listings via the 'dir' command or issue other commands without authenticating.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2013-3565 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in the HTTP Interface in VideoLAN VLC Media Player before 2.0.7 allow remote attackers to inject arbitrary web script or HTML via the (1) command parameter to requests/vlm_cmd.xml, (2) dir parameter to requests/browse.xml, or (3) URI in a request, which is returned in an error message through share/lua/intf/http.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
videolan vlc_media_player *
opensuse opensuse 13.1
CVE-2013-4388 MEDIUM

Buffer overflow in the mp4a packetizer (modules/packetizer/mpeg4audio.c) in VideoLAN VLC Media Player before 2.0.8 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 2.0.6
videolan vlc_media_player *
videolan vlc_media_player 2.0.3
videolan vlc_media_player 2.0.5
videolan vlc_media_player 2.0.4
videolan vlc_media_player 2.0.0
videolan vlc_media_player 2.0.2
videolan vlc_media_player 2.0.1
CVE-2013-6283 HIGH

VideoLAN VLC Media Player 2.0.8 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a URL in a m3u file.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
videolan vlc_media_player 1.1.10.1
videolan vlc_media_player 1.1.0
videolan vlc_media_player 2.0.7
videolan vlc_media_player 2.0.0
videolan vlc_media_player 2.0.1
videolan vlc_media_player 1.0.3
videolan vlc_media_player 1.1.11
videolan vlc_media_player 1.1.4.1
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 1.0.0
videolan vlc_media_player *
videolan vlc_media_player 1.1.8
videolan vlc_media_player 1.1.13
videolan vlc_media_player 2.0.3
videolan vlc_media_player 1.1.4
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 1.1.5
videolan vlc_media_player 1.1.2
videolan vlc_media_player 1.1.9
videolan vlc_media_player 2.0.6
videolan vlc_media_player 1.0.4
videolan vlc_media_player 1.1.12
videolan vlc_media_player 1.1.1
videolan vlc_media_player 1.1.10
videolan vlc_media_player 2.0.5
videolan vlc_media_player 2.0.4
videolan vlc_media_player 1.1.3
videolan vlc_media_player 1.1.7
videolan vlc_media_player 2.0.2
CVE-2013-6934 HIGH

The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2013.11.26, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a space character at the beginning of an RTSP message, which triggers an integer underflow, infinite loop, and buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-6933.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
videolan vlc_media_player *
live555 streaming_media 2013-11-26
CVE-2013-7340 MEDIUM

VideoLAN VLC Media Player before 2.0.7 allows remote attackers to cause a denial of service (memory consumption) via a crafted playlist file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
videolan vlc_media_player 0.2.63
videolan vlc_media_player 0.4.5
videolan vlc_media_player 0.2.83
videolan vlc_media_player 1.1.0
videolan vlc_media_player 0.1.99g
videolan vlc_media_player 0.3.0
videolan vlc_media_player 0.9.4
videolan vlc_media_player 0.8.6c
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.0.0
videolan vlc_media_player 1.1.8
videolan vlc_media_player 2.0.3
videolan vlc_media_player 0.8.6i
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.1.12
videolan vlc_media_player 0.8.0
videolan vlc_media_player 0.2.71
videolan vlc_media_player 0.2.80
videolan vlc_media_player 0.7.0
videolan vlc_media_player 0.2.70
videolan vlc_media_player 0.4.4
videolan vlc_media_player 0.4.2
videolan vlc_media_player 0.5.0
videolan vlc_media_player 0.2.82
videolan vlc_media_player 0.2.92
videolan vlc_media_player 0.8.6a
videolan vlc_media_player 2.0.0
videolan vlc_media_player 0.9.9
videolan vlc_media_player 0.5.1
videolan vlc_media_player 0.5.2
videolan vlc_media_player 0.8.1337
videolan vlc_media_player 0.8.1
videolan vlc_media_player 1.1.11
videolan vlc_media_player 0.2.90
videolan vlc_media_player 0.9.2
videolan vlc_media_player 0.4.3-ac3
videolan vlc_media_player 0.8.6g
videolan vlc_media_player 0.9.3
videolan vlc_media_player 0.7.2
videolan vlc_media_player 1.1.2
videolan vlc_media_player 0.8.2
videolan vlc_media_player 0.2.91
videolan vlc_media_player 0.2.81
videolan vlc_media_player 1.1.1
videolan vlc_media_player 0.4.0
videolan vlc_media_player 1.1.10
videolan vlc_media_player 2.0.5
videolan vlc_media_player 0.9.0
videolan vlc_media_player 2.0.4
videolan vlc_media_player 0.4.6
videolan vlc_media_player 0.1.99e
videolan vlc_media_player 0.9.5
videolan vlc_media_player 0.8.4
videolan vlc_media_player 0.1.99c
videolan vlc_media_player 0.8.6b
videolan vlc_media_player 2.0.1
videolan vlc_media_player 0.7.1
videolan vlc_media_player 0.2.0
videolan vlc_media_player 1.1.4.1
videolan vlc_media_player 0.8.6d
videolan vlc_media_player 0.1.99f
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 0.9.10
videolan vlc_media_player 0.1.99i
videolan vlc_media_player 0.3.1
videolan vlc_media_player 1.1.4
videolan vlc_media_player 0.8.6e
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 0.6.2
videolan vlc_media_player 1.1.9
videolan vlc_media_player 1.0.4
videolan vlc_media_player 0.2.72
videolan vlc_media_player 0.9.8a
videolan vlc_media_player 0.2.62
videolan vlc_media_player 1.1.7
videolan vlc_media_player 2.0.2
videolan vlc_media_player 0.8.6h
videolan vlc_media_player 0.9.9a
videolan vlc_media_player 0.2.61
videolan vlc_media_player 0.8.6f
videolan vlc_media_player 1.1.10.1
videolan vlc_media_player 0.6.0
videolan vlc_media_player 0.2.60
videolan vlc_media_player 1.0.3
videolan vlc_media_player 0.1.99b
videolan vlc_media_player 0.8.5
videolan vlc_media_player 0.2.50
videolan vlc_media_player 0.6.1
videolan vlc_media_player 0.1.99a
videolan vlc_media_player *
videolan vlc_media_player 0.4.1
videolan vlc_media_player 1.1.13
videolan vlc_media_player 0.9.1
videolan vlc_media_player 0.9.6
videolan vlc_media_player 0.5.3
videolan vlc_media_player 0.8.4a
videolan vlc_media_player 1.1.5
videolan vlc_media_player 0.4.3
videolan vlc_media_player 0.2.73
videolan vlc_media_player 0.1.99d
videolan vlc_media_player 1.1.3
videolan vlc_media_player 0.8.6
videolan vlc_media_player 0.1.99h
CVE-2014-1684 MEDIUM

The ASF_ReadObject_file_properties function in modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media Player before 2.1.3 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a zero minimum and maximum data packet size in an ASF file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
videolan vlc_media_player 1.1.10.1
videolan vlc_media_player 1.1.0
videolan vlc_media_player 2.0.7
videolan vlc_media_player 2.0.0
videolan vlc_media_player 2.0.1
videolan vlc_media_player 1.0.3
videolan vlc_media_player 2.0.9
videolan vlc_media_player 1.1.11
videolan vlc_media_player 1.1.4.1
videolan vlc_media_player 2.0.8
videolan vlc_media_player 1.0.2
videolan vlc_media_player 1.1.6.1
videolan vlc_media_player 1.0.0
videolan vlc_media_player *
videolan vlc_media_player 1.1.8
videolan vlc_media_player 1.1.13
videolan vlc_media_player 2.0.3
videolan vlc_media_player 1.1.4
videolan vlc_media_player 1.0.1
videolan vlc_media_player 1.0.5
videolan vlc_media_player 1.0.6
videolan vlc_media_player 1.1.6
videolan vlc_media_player 1.1.5
videolan vlc_media_player 1.1.2
videolan vlc_media_player 2.1.0
videolan vlc_media_player 1.1.9
videolan vlc_media_player 2.0.6
videolan vlc_media_player 1.0.4
videolan vlc_media_player 1.1.12
videolan vlc_media_player 1.1.1
videolan vlc_media_player 1.1.10
videolan vlc_media_player 2.0.5
videolan vlc_media_player 2.0.4
videolan vlc_media_player 1.1.3
videolan vlc_media_player 1.1.7
videolan vlc_media_player 2.0.2
videolan vlc_media_player 2.1.1
CVE-2014-3441 MEDIUM

codec\libpng_plugin.dll in VideoLAN VLC Media Player 2.1.3 allows remote attackers to cause a denial of service (crash) via a crafted .png file, as demonstrated by a png in a .wave file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player 2.1.3
CVE-2014-6440 HIGH

VideoLAN VLC media player before 2.1.5 allows remote attackers to execute arbitrary code or cause a denial of service.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc *
CVE-2014-9597 MEDIUM

The picture_pool_Delete function in misc/picture_pool.c in VideoLAN VLC media player 2.1.5 allows remote attackers to execute arbitrary code or cause a denial of service (DEP violation and application crash) via a crafted FLV file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
videolan vlc_media_player 2.1.5
CVE-2014-9598 MEDIUM

The picture_Release function in misc/picture.c in VideoLAN VLC media player 2.1.5 allows remote attackers to execute arbitrary code or cause a denial of service (write access violation) via a crafted M2V file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
videolan vlc_media_player 2.1.5
CVE-2014-9625 MEDIUM

The GetUpdateFile function in misc/update.c in the Updater in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows remote attackers to conduct buffer overflow attacks and execute arbitrary code via a crafted update status file, aka an "integer truncation" vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2014-9626 MEDIUM

Integer underflow in the MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a box size less than 7.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-191,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2014-9627 MEDIUM

The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large box size.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-704,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2014-9628 MEDIUM

The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to trigger an unintended zero-size malloc and conduct buffer overflow attacks, and consequently execute arbitrary code, via a box size of 7.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2014-9629 MEDIUM

Integer overflow in the Encode function in modules/codec/schroedinger.c in VideoLAN VLC media player before 2.1.6 and 2.2.x before 2.2.1 allows remote attackers to conduct buffer overflow attacks and execute arbitrary code via a crafted length value.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2014-9630 MEDIUM

The rtp_packetize_xiph_config function in modules/stream_out/rtpfmt.c in VideoLAN VLC media player before 2.1.6 uses a stack-allocation approach with a size determined by arbitrary input data, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted length value.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2014-9743 MEDIUM

Cross-site scripting (XSS) vulnerability in the httpd_HtmlError function in network/httpd.c in the web interface in VideoLAN VLC Media Player before 2.2.0 allows remote attackers to inject arbitrary web script or HTML via the path info.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2015-5949 MEDIUM

VideoLAN VLC media player 2.2.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP file, which triggers the freeing of arbitrary pointers.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2015-7810 LOW

libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N 1.0 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-367,

Products Affected

Vendor Product Version
videolan libbluray *
debian debian_linux 8.0
debian debian_linux 9.0
debian debian_linux 10.0
redhat enterprise_linux 7.0
fedoraproject fedora 17
fedoraproject fedora 18
CVE-2016-3941 MEDIUM

Buffer overflow in the AStreamPeekStream function in input/stream.c in VideoLAN VLC media player before 2.2.0 allows remote attackers to cause a denial of service (crash) via a crafted wav file, related to "seek across EOF."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player *
canonical ubuntu_linux 14.04
CVE-2016-5108 HIGH

Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted QuickTime IMA file.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player *
debian debian_linux 8.0
CVE-2017-10699 HIGH

avcodec 2.2.x, as used in VideoLAN VLC media player 2.2.7-x before 2017-06-29, allows out-of-bounds heap memory write due to calling memcpy() with a wrong size, leading to a denial of service (application crash) or possibly code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
videolan vlc_media_player 2.2.2
videolan vlc_media_player 2.2.4
videolan vlc_media_player 2.2.5.1
videolan vlc_media_player 2.2.7
videolan vlc_media_player 2.2.6
videolan vlc_media_player 2.2.5
videolan vlc_media_player 2.2.0
videolan vlc_media_player 2.2.3
videolan vlc_media_player 2.2.1
CVE-2017-17670 MEDIUM

In VideoLAN VLC media player through 2.2.8, there is a type conversion vulnerability in modules/demux/mp4/libmp4.c in the MP4 demux module leading to a invalid free, because the type of a box may be changed between a read operation and a free operation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
videolan vlc_media_player *
debian debian_linux 9.0
CVE-2017-8310 MEDIUM

Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process (causing a denial of service) via a crafted subtitles file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
videolan vlc_media_player 2.2.2
videolan vlc_media_player 2.2.4
videolan vlc_media_player 2.2.5
videolan vlc_media_player 2.2.0
videolan vlc_media_player 2.2.3
videolan vlc_media_player 2.2.1
CVE-2017-8311 MEDIUM

Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to execute arbitrary code via a crafted subtitles file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2017-8312 MEDIUM

Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows attackers to read heap uninitialized data via a crafted subtitles file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
videolan vlc_media_player *
debian debian_linux 8.0
CVE-2017-8313 MEDIUM

Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process via a crafted subtitles file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2017-9300 MEDIUM

plugins\codec\libflac_plugin.dll in VideoLAN VLC media player 2.2.4 allows remote attackers to cause a denial of service (heap corruption and application crash) or possibly have unspecified other impact via a crafted FLAC file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2017-9301 MEDIUM

plugins\audio_filter\libmpgatofixed32_plugin.dll in VideoLAN VLC media player 2.2.4 allows remote attackers to cause a denial of service (invalid read and application crash) or possibly have unspecified other impact via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2018-11516 MEDIUM

The vlc_demux_chained_Delete function in input/demux_chained.c in VideoLAN VLC media player 3.0.1 allows remote attackers to cause a denial of service (heap corruption and application crash) or possibly have unspecified other impact via a crafted .swf file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.0
videolan vlc_media_player 3.0.1
CVE-2018-11529 MEDIUM

VideoLAN VLC media player 2.2.x is prone to a use after free vulnerability which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed exploit attempts will likely result in denial of service conditions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
videolan vlc_media_player *
debian debian_linux 9.0
CVE-2018-19857 MEDIUM

The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF files, because a ReadKukiChunk() cast converts a return value to an unsigned int even if that value is negative. This could result in a denial of service and/or a potential infoleak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-824,

Products Affected

Vendor Product Version
debian debian_linux 9.0
videolan vlc_media_player 3.0.4
CVE-2018-19937 MEDIUM

A local, authenticated attacker can bypass the passcode in the VideoLAN VLC media player app before 3.1.5 for iOS by opening a URL and turning the phone.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,CWE-287,

Products Affected

Vendor Product Version
videolan vlc_for_mobile *
CVE-2019-12874 HIGH

An issue was discovered in zlib_decompress_extra in modules/demux/mkv/util.cpp in VideoLAN VLC media player 3.x through 3.0.7. The Matroska demuxer, while parsing a malformed MKV file type, has a double free.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-415,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2019-13602 MEDIUM

An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media player through 3.0.7.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and crash) or possibly have unspecified other impact via a crafted .mp4 file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-191,CWE-787,

Products Affected

Vendor Product Version
canonical ubuntu_linux 18.04
videolan vlc_media_player *
canonical ubuntu_linux 19.04
opensuse backports_sle 15.0
debian debian_linux 9.0
debian debian_linux 10.0
opensuse leap 15.1
opensuse leap 15.0
CVE-2019-13615 MEDIUM

libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2019-13962 HIGH

lavc_CopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player through 3.0.7 has a heap-based buffer over-read because it does not properly validate the width and height.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
canonical ubuntu_linux 18.04
videolan vlc_media_player *
canonical ubuntu_linux 19.04
opensuse backports_sle 15.0
debian debian_linux 9.0
debian debian_linux 10.0
opensuse leap 15.1
opensuse leap 15.0
CVE-2019-14437 MEDIUM

The xiph_SplitHeaders function in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 does not check array bounds properly. As a result, a heap-based buffer over-read can be triggered via a crafted .ogg file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,CWE-129,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.7.1
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2019-14438 MEDIUM

A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.7.1
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2019-14498 MEDIUM

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-369,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.7.1
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2019-14533 MEDIUM

The Control function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 has a use-after-free.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.7.1
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2019-14534 MEDIUM

In VideoLAN VLC media player 3.0.7.1, there is a NULL pointer dereference at the function SeekPercent of demux/asf/asf.c that will lead to a denial of service attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.7.1
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2019-14535 MEDIUM

A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-369,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.7.1
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2019-14776 MEDIUM

A heap-based buffer over-read exists in DemuxInit() in demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 via a crafted .mkv file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.7.1
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2019-14777 MEDIUM

The Control function of demux/mkv/mkv.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.7.1
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2019-14778 MEDIUM

The mkv::virtual_segment_c::seek method of demux/mkv/virtual_segment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.7.1
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2019-14970 MEDIUM

A vulnerability in mkv::event_thread_t in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer overflow via a crafted .mkv file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.7.1
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2019-18278 MEDIUM

When executing VideoLAN VLC media player 3.0.8 with libqt on Windows, Data from a Faulting Address controls Code Flow starting at libqt_plugin!vlc_entry_license__3_0_0f+0x00000000003b9aba. NOTE: the VideoLAN security team indicates that they have not been contacted, and have no way of reproducing this issue.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.8
CVE-2019-19721 MEDIUM

An off-by-one error in the DecodeBlock function in codec/sdl_image.c in VideoLAN VLC media player before 3.0.9 allows remote attackers to cause a denial of service (memory corruption) via a crafted image file. NOTE: this may be related to the SDL_Image product.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-193,CWE-787,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2019-5439 MEDIUM

A Buffer Overflow in VLC Media Player < 3.0.7 causes a crash which can possibly be further developed into a remote code execution exploit.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,CWE-119,

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2019-5459 MEDIUM

An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H 1.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-191,CWE-191,

Products Affected

Vendor Product Version
videolan vlc_media_player *
opensuse backports_sle 15.0
opensuse leap 15.1
opensuse leap 15.0
opensuse backports sle-15
CVE-2019-5460 MEDIUM

Double Free in VLC versions <= 3.0.6 leads to a crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,CWE-415,

Products Affected

Vendor Product Version
videolan vlc_media_player *
opensuse leap 15.1
opensuse leap 15.0
opensuse backports sle-15
CVE-2020-13428 MEDIUM

A heap-based buffer overflow in the hxxx_AnnexB_to_xVC function in modules/packetizer/hxxx_nal.c in VideoLAN VLC media player before 3.0.11 for macOS/iOS allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted H.264 Annex-B video (.avi for example) file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
videolan vlc_media_player *
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2020-26664 MEDIUM

A vulnerability in EbmlTypeDispatcher::send in VideoLAN VLC media player 3.0.11 allows attackers to trigger a heap-based buffer overflow via a crafted .mkv file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
videolan vlc_media_player *
debian debian_linux 9.0
debian debian_linux 10.0
CVE-2021-25801 MEDIUM

A buffer overflow vulnerability in the __Parse_indx component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H 1.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.11
CVE-2021-25802 MEDIUM

A buffer overflow vulnerability in the AVI_ExtractSubtitle component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H 1.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.11
CVE-2021-25803 MEDIUM

A buffer overflow vulnerability in the vlc_input_attachment_New component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H 1.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.11
CVE-2021-25804 MEDIUM

A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Player 3.0.11 can a denial of service (DOS) in the application.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
videolan vlc_media_player 3.0.11
CVE-2022-41325

An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into opening a crafted playlist or connecting to a rogue VNC server, to crash VLC or execute code under some conditions.

Products Affected

Vendor Product Version
videolan vlc_media_player *
debian debian_linux 11.0
CVE-2023-32570

VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that can lead to an application crash, related to dav1d_decode_frame_exit.

Products Affected

Vendor Product Version
fedoraproject fedora 37
fedoraproject fedora 38
videolan dav1d *
CVE-2023-46814

A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYSTEM.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2023-47359

Videolan VLC prior to version 3.0.20 contains an incorrect offset read that leads to a Heap-Based Buffer Overflow in function GetPacket() and results in a memory corruption.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2023-47360

Videolan VLC prior to version 3.0.20 contains an Integer underflow that leads to an incorrect packet length.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
videolan vlc_media_player *
CVE-2024-1580

An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder. We recommend upgrading past version 1.4.0 of dav1d.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve-coordination@google.com 5.9 MEDIUM CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:L 1.2 4.7

Products Affected

Vendor Product Version
apple macos *
apple safari *
fedoraproject fedora 40
apple visionos *
apple iphone_os *
apple ipados *
videolan dav1d *