Vulnerability CVE-2008-1769


Published: 2008-04-25   Modified: 2012-02-12

Description:
VLC before 0.8.6f allow remote attackers to cause a denial of service (crash) via a crafted Cinepak file that triggers an out-of-bounds array access and memory corruption.

Type:

CWE-399

(Resource Management Errors)

Vendor: Videolan
Product: VLC 
Version:
0.8.6e
0.8.6d
0.8.6c
0.8.6b
0.8.6a
0.8.6
0.8.5
0.8.4a
0.8.4
0.8.2
0.8.1337
0.8.1
0.8.0
0.7.2
0.7.1
0.7.0
0.6.2
0.6.1
0.6.0
0.5.3
0.5.2
0.5.1
0.5.0
0.4.6
0.4.5
0.4.4
0.4.3_ac3
0.4.3
0.4.2
0.4.1
0.4.0
0.3.1
0.3.0
0.2.92
0.2.91
0.2.90
0.2.83
0.2.82
0.2.81
0.2.80
0.2.73
0.2.72
0.2.71
0.2.70
0.2.63
0.2.62
0.2.61
0.2.60
0.2.50
0.2.0
0.1.99i
0.1.99h
0.1.99g
0.1.99f
0.1.99e
0.1.99d
0.1.99c
0.1.99b
0.1.99a
0.1.99

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.8/10
6.4/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

 References:
http://www.vupen.com/english/advisories/2008/0985
http://security.gentoo.org/glsa/glsa-200804-25.xml
http://secunia.com/advisories/29503
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14445
http://git.videolan.org/gitweb.cgi/vlc.git/?a=commit;h=cf489d7bff3c1b36b2d5501ecf21129c78104d98
http://bugs.gentoo.org/show_bug.cgi?id=214627#c3
http://www.videolan.org/security/sa0803.php
http://www.videolan.org/developers/vlc/NEWS
http://www.securityfocus.com/bid/28904
http://wiki.videolan.org/Changelog/0.8.6f
http://secunia.com/advisories/29800

Related CVE
CVE-2015-7810
libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files
CVE-2019-14970
A vulnerability in mkv::event_thread_t in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer overflow via a crafted .mkv file.
CVE-2019-14778
The mkv::virtual_segment_c::seek method of demux/mkv/virtual_segment.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free.
CVE-2019-14777
The Control function of demux/mkv/mkv.cpp in VideoLAN VLC media player 3.0.7.1 has a use-after-free.
CVE-2019-14776
A heap-based buffer over-read exists in DemuxInit() in demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 via a crafted .mkv file.
CVE-2019-14535
A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file.
CVE-2019-14534
In VideoLAN VLC media player 3.0.7.1, there is a NULL pointer dereference at the function SeekPercent of demux/asf/asf.c that will lead to a denial of service attack.
CVE-2019-14533
The Control function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 has a use-after-free.

Copyright 2019, cxsecurity.com

 

Back to Top