Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2008-0984 | 9.3 |
The MP4 demuxer (mp4.c) for VLC media player 0.8.6d and earlier, as used in Miro Player 1.1 and earlier, allows remote attackers to overwrite arbitrary memory and execute arbitrary code via a malformed MP4 file.
|
15-10-2018 - 22:04 | 26-02-2008 - 19:44 | |
CVE-2007-6683 | 5.0 |
The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via (1) the :demuxdump-file option in a filename in a playlist, or (2) a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability.
|
29-09-2017 - 01:30 | 17-01-2008 - 01:00 | |
CVE-2007-6682 | 7.5 |
Format string vulnerability in the httpd_FileCallBack function (network/httpd.c) in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via format string specifiers in the Connection parameter.
|
29-09-2017 - 01:30 | 17-01-2008 - 01:00 | |
CVE-2007-6681 | 7.5 |
Stack-based buffer overflow in modules/demux/subtitle.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via a long subtitle in a (1) MicroDvd, (2) SSA, and (3) Vplayer file.
|
29-09-2017 - 01:30 | 17-01-2008 - 01:00 | |
CVE-2007-6684 | 5.0 |
The RTSP module in VideoLAN VLC 0.8.6d allows remote attackers to cause a denial of service (crash) via a request without a Transport parameter, which triggers a NULL pointer dereference.
|
29-09-2017 - 01:30 | 17-01-2008 - 01:00 | |
CVE-2008-0295 | 8.5 |
Heap-based buffer overflow in modules/access/rtsp/real_sdpplin.c in the Xine library, as used in VideoLAN VLC Media Player 0.8.6d and earlier, allows user-assisted remote attackers to cause a denial of service (crash) or execute arbitrary code via lo
|
29-09-2017 - 01:30 | 16-01-2008 - 22:00 | |
CVE-2008-0296 | 10.0 |
Heap-based buffer overflow in the libaccess_realrtsp plugin in VideoLAN VLC Media Player 0.8.6d and earlier on Windows might allow remote RTSP servers to cause a denial of service (application crash) or execute arbitrary code via a long string.
|
29-09-2017 - 01:30 | 16-01-2008 - 22:00 |