Vulnerability CVE-2008-4654

Vulnerability CVE-2008-4654

Published: 2008-10-21 Modified: 2012-02-12

Description:

	Topic	Author	Date
High	VLC media player TiVo ty Processing Stack Overflow Vulnerability	Tobias Klein	22.10.2008

Type:

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS Base Score	Impact Subscore	Exploitability Subscore
9.3/10	10/10	8.6/10

Affected software
Videolan -> Vlc media player

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=502726

http://git.videolan.org/?p=vlc.git;a=commit;h=fde9e1cc1fe1ec9635169fa071e42b3aa6436033

http://git.videolan.org/?p=vlc.git;a=commitdiff;h=26d92b87bba99b5ea2e17b7eaa39c462d65e9133

http://securityreason.com/securityalert/4460

http://www.openwall.com/lists/oss-security/2008/10/19/2

http://www.securityfocus.com/archive/1/497587/100/0/threaded

http://www.securityfocus.com/bid/31813

http://www.trapkit.de/advisories/TKADV2008-010.txt

http://www.videolan.org/security/sa0809.html

http://www.vupen.com/english/advisories/2008/2856

https://exchange.xforce.ibmcloud.com/vulnerabilities/45960

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14803