Download
| Alert*
oval:org.secpod.oval:def:20727
The host is installed with VideoLAN VLC Media Player before 0.8.6e and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle SDP Abstract attribute in an RTSP session. Successful exploitation allows attackers to cause a denial of service. oval:org.secpod.oval:def:20744 The host is installed with vlc media player before 0.9.0 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle via a crafted set of 16-bit length values. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:20745 The host is installed with vlc media player before 0.9.0 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle an invalid "number of axes" field in a Printer Font Binary (PFB) file. Successful exploitation could allow attackers to execute arbi ... oval:org.secpod.oval:def:20743 The host is installed with VideoLAN VLC Media Player before 0.9.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a PNG image with crafted zTXt chunks. Successful exploitation allow context-dependent attackers to cause a denial of service ... oval:org.secpod.oval:def:20730 The host is installed with VideoLAN VLC Media Player before 0.8.6g and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a PNG file with zero length "unknown" chunks. Successful exploitation allows context-dependent attackers to cause a denial o ... oval:org.secpod.oval:def:20734 The host is installed with VideoLAN VLC Media Player before 0.8.6f and is prone to integer overflow vulnerability. A flaw is present in the application, which does not properly handle a crafted MP4 RDRF box that triggers a heap-based buffer overflow. Successful exploitation allows remote attackers t ... oval:org.secpod.oval:def:20728 The host is installed with VideoLAN VLC Media Player before 0.8.6e and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle long Session Description Protocol (SDP) data. Successful exploitation allows attackers to cause a denial of service ... oval:org.secpod.oval:def:20729 The host is installed with VideoLAN VLC Media Player 0.8.6d and earlier and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a long string. Successful exploitation allows attackers to cause a denial of service. oval:org.secpod.oval:def:20733 The host is installed with VideoLAN VLC Media Player before 0.8.6g and is prone to integer overflow vulnerability. A flaw is present in the application, which does not properly handle a crafted OGG file with a large virtual space for its codebook, which triggers a heap overflow. Successful exploitat ... oval:org.secpod.oval:def:20731 The host is installed with VideoLAN VLC Media Player before 0.8.6g and is prone to denial of service vulnerability. A flaw is present in the application, which does not properly handle a zero value for codebook.dim. Successful exploitation allows remote attackers to cause a denial of service (crash ... oval:org.secpod.oval:def:20732 The host is installed with VideoLAN VLC Media Player before 0.8.6g and is prone to integer overflow vulnerability. A flaw is present in the application, which does not properly handle a crafted OGG file, which triggers a heap overflow. Successful exploitation allows remote attackers to execute arbit ... oval:org.secpod.oval:def:1371 The host is installed with VLC Media Player 0.8.5 through 1.1.9 and is prone to integer overflow vulnerability. A flaw is present in the application which fails to parse the XSPF playlist. Successful exploitation could allow remote attacker to execute arbitrary code in the context of the application ... oval:org.secpod.oval:def:17344 The host is installed with VideoLAN VLC Media Player before 2.0.7 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted playlist file, Successful exploitation allows attackers to cause a denial of service (memory consumption). oval:org.secpod.oval:def:4367 The host is installed with VideoLAN VLC Media Player 1.1.11 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a specially-crafted .amr file. Successful exploitation could allow attackers to cause crash of application. oval:org.secpod.oval:def:25651 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:33993 The host is installed with VideoLAN vlc media player before 2.2.0 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted wav file, related to "seek across EOF". Successful exploitation could allow remote attackers to cause a denial of s ... oval:org.secpod.oval:def:25652 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25653 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25654 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25655 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25656 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to an invalid memory access vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:34971 The host is installed with VideoLAN vlc media player before 2.2.4 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted QuickTime IMA file. Successful exploitation could allow remote attackers to cause a denial of service (crash) or po ... oval:org.secpod.oval:def:55468 The host is installed with VideoLAN VLC media player before 3.0.7 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle an invalid AVI file. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:20724 The host is installed with VideoLAN VLC Media Player before 2.1.5 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle an IDAT chunk with a length of zero. Successful exploitation allows attackers to cause a denial of service. oval:org.secpod.oval:def:40645 The host is installed with VideoLAN vlc media player before 2.2.5 and is prone to a heap based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted subtitle file. Successful exploitation could allow remote attackers to execute arbitrary code. oval:org.secpod.oval:def:40646 The host is installed with VideoLAN vlc media player before 2.2.5 and is prone to a heap out-of-bound read vulnerability. A flaw is present in the application, which fails to handle a crafted subtitle file. Successful exploitation could allow remote attackers to read data beyond allocated memory and ... oval:org.secpod.oval:def:16011 The host is installed with VideoLAN VLC media player 2.0.8 or earlier and is prone to an unspecified vulnerability. The flaw is present in the application, which fails to handle a long string in a URL in a m3u file. Successful exploitation allows remote attackers to cause a denial of service (crash) ... oval:org.secpod.oval:def:608 The host is installed with VLC Media Player before 1.1.8 and is prone to arbitrary code execution vulnerability. A flaw is present in the application which is caused by a memory corruption error in the "libdirectx" plugin when processing malformed NSV data. Successful exploitation allows remote atta ... oval:org.secpod.oval:def:607 The host is installed with VLC Media Player before 1.1.8 and is prone to arbitrary code execution vulnerability. A flaw is present in the application which is caused due to an error when processing video files with large dimensions. Successful exploitation could allow remote attackers to overflow a ... oval:org.secpod.oval:def:16871 The host is installed with vlc media player before 2.1.12 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle via a space character at the beginning of an RTSP message. Successful exploitation could allow attackers to execute arbitr ... oval:org.secpod.oval:def:40667 The host is installed with VideoLAN VLC media player 2.2.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted FLAC file. Successful exploitation could allow remote attackers to cause a denial of service (heap corruption and applic ... oval:org.secpod.oval:def:40668 The host is installed with VideoLAN VLC media player 2.2.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted file. Successful exploitation could allow remote attackers denial of service (invalid read and application crash) or pos ... oval:org.secpod.oval:def:16870 The host is installed with vlc media player before 2.1.12 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a (1) space or (2) tab character. Successful exploitation could allow attackers to execute arbitrary code or crash the ser ... oval:org.secpod.oval:def:7978 The host is installed with VideoLAN VLC media player 2.0.3 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted PNG file. Successful exploitation allows remote attackers to cause an application crash. oval:org.secpod.oval:def:57421 The host is installed with VideoLAN VLC media player through 3.0.7.1 and is prone to an integer underflow vulnerability. A flaw is present in the application, which fails to properly handle an issue in modules/demux/mp4/mp4.c file. Successful exploitation could allow remote attackers to cause a deni ... oval:org.secpod.oval:def:837 The host is installed with VLC Media Player 1.0.0 through 1.1.9 and is prone to buffer-overflow vulnerability. A flaw is present in the application which fails to perform adequate checks on user-supplied input when a user attempts to create a bookmark via the 'Playback' menu while playing an mp3 aud ... oval:org.secpod.oval:def:14950 The host is installed with VideoLAN VLC media player before 2.0.4 and is prone to denial of service vulnerability. The flaw is present in the SHAddToRecentDocs function, which fails to handle a crafted file name that triggers an incorrect string-length calculation when the file is added to VLC. Succ ... oval:org.secpod.oval:def:14949 The host is installed with VideoLAN VLC media player before 2.0.4 and is prone to multiple buffer overflows vulnerability. The flaw is present in the application, which fails to handle vectors related to the (1) freetype renderer and (2) HTML subtitle parser. Successful exploitation could allow remo ... oval:org.secpod.oval:def:16860 The host is installed with vlc media player 0.9.2 and is prone to an array index error vulnerability. A flaw is present in the application, which fails to handle an XSPF playlist file with a negative identifier tag. Successful exploitation could allow attackers to overwrite arbitrary memory and exec ... oval:org.secpod.oval:def:16866 The host is installed with vlc media player 0.8.6 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle an ogg file with a crafted Advanced SubStation Alpha Subtitle (.ass) file. Successful exploitation could allow attackers ... oval:org.secpod.oval:def:39562 The host is installed with VideoLAN VLC Media Player before 2.1.5 and is prone to heap overflow vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:26776 The host is installed with VideoLAN VLC Media Player before 2.2.0 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to handle crafted path info. Successful exploitation could allow attackers to inject arbitrary web script or HTML. oval:org.secpod.oval:def:16859 The host is installed with vlc media player 0.8.6i and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle a large fmt chunk in a WAV file. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:16858 The host is installed with vlc media player 0.8.6h and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted TTA file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16857 The host is installed with vlc media player before 0.8.6e and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a malformed MP4 file. Successful exploitation could allow attackers to overwrite arbitrary memory and execute arbitrary code. oval:org.secpod.oval:def:26245 The host is installed with VideoLAN VLC Media Player 2.2.1 or earlier and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted 3GP file. Successful exploitation allows attackers to crash the service or execute arbitrary code. oval:org.mitre.oval:def:11821 VLC media player (32 bit) is installed oval:org.secpod.oval:def:30727 The host is installed with VLC Media Player 2.1.3 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted .png file, as demonstrated by a png in a .wave file. Successful exploitation allows remote attacker to cause a denial of service (c ... oval:org.secpod.oval:def:20756 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle vectors involving the NPUSHB and NPUSHW instructions in a TrueType font. Successful exploitation allows remote attackers to c ... oval:org.secpod.oval:def:20754 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle crafted glyph or bitmap data in a BDF font. Successful exploitation allows remote attackers to cause a denial of service (inv ... oval:org.secpod.oval:def:20759 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle vectors involving the MIRP instruction in a TrueType font. Successful exploitation allows remote attackers to cause a denial ... oval:org.secpod.oval:def:20749 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted TrueType font. Successful exploitation allows remote attackers to cause a denial of service (NULL pointer dereferen ... oval:org.secpod.oval:def:20750 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted SFNT string in a Type 42 font. Successful exploitation allows remote attackers to cause a denial of service (invali ... oval:org.secpod.oval:def:20741 The host is installed with VideoLAN VLC Media Player before 0.8.6g and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle an ID3_FIELD_TYPE_STRINGLIST field that ends in '\0', which triggers an infinite loop. Successful exploitation allows contex ... oval:org.secpod.oval:def:20757 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle crafted glyph or bitmap data in a BDF font that lacks an ENCODING field. Successful exploitation allows remote attackers to c ... oval:org.secpod.oval:def:20758 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted header in a BDF font. Successful exploitation allows remote attackers to cause a denial of service (invalid heap wr ... oval:org.secpod.oval:def:20755 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle crafted private-dictionary data in a Type 1 font. Successful exploitation allows remote attackers to cause a denial of servic ... oval:org.secpod.oval:def:20753 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle crafted dictionary data in a Type 1 font. Successful exploitation allows remote attackers to cause a denial of service (inval ... oval:org.secpod.oval:def:20751 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle crafted property data in a PCF font. Successful exploitation allows remote attackers to cause a denial of service (invalid he ... oval:org.secpod.oval:def:20752 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle vectors related to the cell table of a font. Successful exploitation allows remote attackers to cause a denial of service (in ... oval:org.secpod.oval:def:20760 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle crafted glyph data in a BDF font. Successful exploitation allows remote attackers to cause a denial of service (invalid stack ... oval:org.secpod.oval:def:20761 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted PostScript font object. Successful exploitation allows remote attackers to cause a denial of service (invalid stack ... oval:org.secpod.oval:def:20747 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle crafted property data in a BDF font. Successful exploitation allows attackers to cause a denial of service. oval:org.secpod.oval:def:20748 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle crafted glyph or bitmap data in a BDF font. Successful exploitation allows remote attackers to cause a denial of service (inv ... oval:org.secpod.oval:def:20764 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted font. Successful exploitation allows remote attackers to cause a denial of service (divide-by-zero error). oval:org.secpod.oval:def:20765 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted TrueType font. Successful exploitation allows remote attackers to cause a denial of service (invalid heap write op ... oval:org.secpod.oval:def:20762 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted ASCII string in a BDF font. Successful exploitation allows remote attackers to cause a denial of service (invalid s ... oval:org.secpod.oval:def:20763 The host is installed with VideoLAN VLC Media Player before 2.0.1 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle crafted glyph-outline data in a font. Successful exploitation allows remote attackers to cause a denial of service (invalid s ... oval:org.secpod.oval:def:2042 The host is installed with VideoLAN VLC media player 1.1.x before 1.1.11, and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the DemuxAudioSipr function in real.c in the RealMedia demuxer in the application, which fails to validate user supplied input. Successful exploi ... oval:org.secpod.oval:def:2043 The host is installed with VideoLAN VLC media player 0.5.0 through 1.1.10, and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the AVI_ChunkRead_strf function in libavi.c in the AVI demuxer in the application, which fails to sanitize user supplied input. Successful explo ... oval:org.secpod.oval:def:30726 The host is installed with VLC Media Player 1.1.9 or earlier and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a malformed AMV file. Successful exploitation allows remote attacker to cause a denial of service (memory corruption) or possibly ... oval:org.secpod.oval:def:838 The host is installed with VLC Media Player before 1.1.9 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application which is caused by improper bounds checking by the MP4_ReadBox_skcr() function. Successful exploitation allows remote attacker to overflow a buffer ... oval:org.secpod.oval:def:126 The host is installed with VideoLAN VLC Media Player before 1.1.7 and is prone to Denial of service vulnerability. A flaw is present in the MKV demuxer plugin in VideoLAN VLC media player, which fails to validate input within the "MKV_IS_ID" macro in modules/demux/mkv/mkv.hpp of the MKV demuxer. Suc ... oval:org.secpod.oval:def:125 The host is installed with VideoLAN VLC Media Player 1.1 before 1.1.6 and is prone to Heap based memory corruption vulnerability. A flaw is present in the "StripTags()" function within the USF and Text subtitles decoders ["modules/codec/subtitles/subsdec.c" and "modules/codec/subtitles/subsusf.c"], ... oval:org.secpod.oval:def:69 The host is installed with VLC media player and is prone to multiple heap-based buffer overflow vulnerabilities. The flaws are present in cdg.c in the CDG decoder in VideoLAN VLC Media Player before 1.1.6, which are caused by array indexing errors in the "DecodeTileBlock()" and "DecodeScroll()" [mod ... oval:org.secpod.oval:def:16868 The host is installed with vlc media player before 1.1.6 and is prone to multiple integer overflow vulnerabilities. The flaws are present in the application, which fails to properly handle a zero i_subpackets value in a Real Media file. Successful exploitation could allow attackers to execute arbitr ... oval:org.mitre.oval:def:12190 The host is installed with VLC Media Player 1.1.3 or below and is prone to an untrusted search path vulnerability in bin/winvlc.c. A flaw is present in the application, which fails to validate user supplied input. Successful exploitation allows attacker to execute arbitrary code and conduct DLL hija ... oval:org.secpod.oval:def:16867 The host is installed with vlc media player 0.9.0 through 1.1.2 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a crafted media file. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:30725 The host is installed with VLC Media Player 0.9.9 and is prone to stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a long smb URI in a playlist file. Successful exploitation allows remote attacker to cause a denial of service (application crash) ... oval:org.secpod.oval:def:16865 The host is installed with vlc media player 0.9.0 through 0.9.7 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to properly handle a malformed RealMedia. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:16864 The host is installed with vlc media player 0.9.x before 0.9.6 and is prone to stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle an invalid RealText (rt) subtitle file. Successful exploitation could allow attackers to execute arbitrary co ... oval:org.secpod.oval:def:20746 The host is installed with vlc media player before 0.9.0 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle a large fmt chunk in a WAV file. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:20735 The host is installed with VideoLAN VLC Media Player before 0.8.6f and is prone to multiple integer overflows vulnerability. The flaws are present in the application, which does not properly handle the (1) MP4 demuxer, (2) Real demuxer, and (3) Cinepak codec. Successful exploitation allows remote at ... oval:org.secpod.oval:def:20737 The host is installed with VideoLAN VLC Media Player before 0.8.6f and is prone to a stack-based buffer overflow vulnerability. The flaw is present in the application, which does not properly handle a long subtitle in an SSA file. Successful exploitation allows remote attackers to cause a denial of ... oval:org.secpod.oval:def:16863 The host is installed with vlc media player 0.5.0 through 0.9.5 and is prone to stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle the header of an invalid CUE image file. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:16862 The host is installed with vlc media player 0.9.0 through 0.9.4 and is prone to multiple integer overflow vulnerabilities. The flaws are present in the application, which fails to handle a crafted .ty file. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:16861 The host is installed with vlc media player 0.9.0 through 0.9.4 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a TiVo TY media file with a header containing a crafted size value. Successful exploitation could allow attackers ... oval:org.secpod.oval:def:20726 The host is installed with VideoLAN VLC Media Player before 0.8.6f and is prone to arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted MP4 file. Successful exploitation allows attackers to cause a denial of service. oval:org.secpod.oval:def:16939 The host is installed with VideoLAN VLC Media Player before 2.1.3 and is prone to divide-by-zero error vulnerability. A flaw is present in the application, which fails to handle a zero minimum and maximum data packet size in an ASF file. Successful exploitation allows attackers to cause a denial of ... oval:org.secpod.oval:def:16010 The host is installed with VideoLAN VLC media player before 2.0.8 and is prone to buffer overflow vulnerability. The flaw is present in the mp4a packetizer (modules/packetizer/mpeg4audio.c), which fails to perform adequate boundary checks on user-supplied input. Successful exploitation allows remote ... oval:org.secpod.oval:def:14948 The host is installed with VideoLAN VLC media player before 2.0.5 and is prone to buffer overflow vulnerability. The flaw is present in the ASF Demuxer (modules/demux/asf/asf.c), which fails to handle a crafted ASF movie that triggers an out-of-bounds read. Successful exploitation could allow remote ... oval:org.secpod.oval:def:16869 The host is installed with vlc media player before 0.9.0 through 1.1.12 and is prone to a double free vulnerability. A flaw is present in the application, which fails to properly handle a crafted TiVo (TY) file. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:20725 The host is installed with VideoLAN VLC Media Player before 2.0.7 and is prone to memory exhaustion vulnerability. A flaw is present in the application, which fails to handle crafted playlist files. Successful exploitation allows attackers to cause a denial of service. oval:org.secpod.oval:def:6387 The host is installed with VideoLAN VLC media player before 2.0.2 and is prone to a heap based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted OGG file. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:20738 The host is installed with VideoLAN VLC Media Player before 0.8.6h and is prone to a buffer overflow vulnerability. The flaw is present in the application, which does not properly handle a zero value for the length of Server Names, which leads to a buffer overflow. Successful exploitation allows rem ... oval:org.secpod.oval:def:20742 The host is installed with VideoLAN VLC Media Player before 0.8.6g and is prone to untrusted search path vulnerability. A flaw is present in the application, which fails to handle a malicious library under the modules/ or plugins/ subdirectories of the current working directory. Successful exploitat ... oval:org.secpod.oval:def:20740 The host is installed with VideoLAN VLC Media Player before 0.8.6h and is prone to a integer signedness error vulnerability. The flaw is present in the application, which does not properly handle a certain integer value in the random field. Successful exploitation allows remote attackers to cause a ... oval:org.secpod.oval:def:20739 The host is installed with VideoLAN VLC Media Player before 0.8.6h and is prone to a buffer overflow vulnerability. The flaw is present in the application, which does not properly handle a TLS message containing multiple Client Hello messages. Successful exploitation allows remote attackers to cause ... oval:org.secpod.oval:def:20736 The host is installed with VideoLAN VLC Media Player before 0.8.6f and is prone to a denial of service vulnerability. The flaw is present in the application, which does not properly handle a crafted Cinepak file that triggers an out-of-bounds array access and memory corruption. Successful exploitati ... oval:org.secpod.oval:def:43235 The host is installed with VideoLAN VLC media player through 2.2.8 and is prone to a type conversion vulnerability. A flaw is present in the application, which fails to handle a crafted file. Successful exploitation could allow remote attackers to change the type of a box between a read operation an ... oval:org.secpod.oval:def:45743 The host is installed with VideoLAN VLC media player 3.0.1 and is prone to a denial-of-service vulnerability. A flaw is present in the application, which fails to handle a crafted .swf file. Successful exploitation could allow remote attackers to cause a denial-of-service. oval:org.secpod.oval:def:4833 The host is installed with VideoLAN VLC media player before 2.0.1 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted MMS:// stream. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:4834 The host is installed with VideoLAN VLC media player before 2.0.1 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted Real RTSP stream. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:50018 The host is installed with VideoLAN VLC media player 3.0.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle the magic cookies in CAF files. Successful exploitation could allow attackers to perform a denial of service or a potenti ... oval:org.secpod.oval:def:5220 The host is installed with VideoLAN VLC media player 2.0.1 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted MP4 file. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:55536 The host is installed with VideoLAN VLC media player through 3.0.7 and is prone to a double free vulnerability. A flaw is present in the application, which fails to properly handle an issue in modules/demux/mkv/util.cpp file. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:58168 The host is installed with VideoLAN VLC media player before 3.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a crafted file. Successful exploitation could allow attackers to trigger either a crash of VLC or an arbit ... oval:org.secpod.oval:def:58169 The host is installed with VideoLAN VLC media player before 3.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a crafted file. Successful exploitation could allow attackers to trigger either a crash of VLC or an arbit ... oval:org.secpod.oval:def:58170 The host is installed with VideoLAN VLC media player before 3.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a crafted file. Successful exploitation could allow attackers to trigger either a crash of VLC or an arbit ... oval:org.secpod.oval:def:58171 The host is installed with VideoLAN VLC media player before 3.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a crafted file. Successful exploitation could allow attackers to trigger either a crash of VLC or an arbit ... oval:org.secpod.oval:def:58172 The host is installed with VideoLAN VLC media player before 3.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a crafted file. Successful exploitation could allow attackers to trigger either a crash of VLC or an arbit ... oval:org.secpod.oval:def:58173 The host is installed with VideoLAN VLC media player before 3.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a crafted file. Successful exploitation could allow attackers to trigger either a crash of VLC or an arbit ... oval:org.secpod.oval:def:58174 The host is installed with VideoLAN VLC media player before 3.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a crafted file. Successful exploitation could allow attackers to trigger either a crash of VLC or an arbit ... oval:org.secpod.oval:def:58175 The host is installed with VideoLAN VLC media player before 3.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a crafted file. Successful exploitation could allow attackers to trigger either a crash of VLC or an arbit ... oval:org.secpod.oval:def:58176 The host is installed with VideoLAN VLC media player before 3.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a crafted file. Successful exploitation could allow attackers to trigger either a crash of VLC or an arbit ... oval:org.secpod.oval:def:58177 The host is installed with VideoLAN VLC media player before 3.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a crafted file. Successful exploitation could allow attackers to trigger either a crash of VLC or an arbit ... oval:org.secpod.oval:def:74289 The host is installed with VideoLAN VLC media player 3.0.11 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle an issue in the __Parse_indx component. Successful exploitation allows attackers to cause an out-of-bounds read via a craf ... oval:org.secpod.oval:def:74290 The host is installed with VideoLAN VLC media player 3.0.11 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle an issue in the AVI_ExtractSubtitle component. Successful exploitation allows attackers to cause an out-of-bounds read via ... oval:org.secpod.oval:def:74291 The host is installed with VideoLAN VLC media player 3.0.11 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle an issue in the vlc_input_attachment_New component. Successful exploitation allows attackers to cause an out-of-bounds rea ... oval:org.secpod.oval:def:74292 The host is installed with VideoLAN VLC media player 3.0.11 and is prone to a NULL-pointer dereference vulnerability. A flaw is present in the application, which fails to properly handle an issue in the Open component in avi.c. Successful exploitation allows attackers to cause a denial of service (D ... oval:org.secpod.oval:def:4207 The host is installed with Google Chrome before 17.0.963.56 or vlc media player before 2.0.1 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors that trigger an integer truncation. Successful exploitation could allow attacker ... oval:org.secpod.oval:def:46746 The host is installed with VideoLAN VLC media player through 2.2.8 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle crafted MKV files. Successful exploitation could allow attackers to execute arbitrary code in the context of the log ... oval:org.secpod.oval:def:71628 The host is installed with VideoLAN VLC media player 3.0.0 before 3.0.9 and is prone to an arbitrary code execution vulnerability. A flaw is present in the libmicrodns, which fails to properly handle compressed labels in mDNS messages. Successful exploitation allows attacker to execute arbitrary cod ... oval:org.secpod.oval:def:71627 The host is installed with VideoLAN VLC media player 3.0.0 before 3.0.9 and is prone to a denial of service vulnerability. A flaw is present in the libmicrodns, which fails to properly handle compressed labels in mDNS messages. Successful exploitation can cause denial of service. oval:org.secpod.oval:def:71629 The host is installed with VideoLAN VLC media player 3.0.0 before 3.0.9 and is prone to a denial of service vulnerability. A flaw is present in the libmicrodns, which fails to properly handle the RDATA section in a TXT record in mDNS messages. Successful exploitation cause a denial of service. oval:org.secpod.oval:def:71631 The host is installed with VideoLAN VLC media player 3.0.0 before 3.0.9 and is prone to a denial of service vulnerability. A flaw is present in the libmicrodns, which fails to properly handle the parsing of mDNS messages. Successful exploitation cause a denial of service. oval:org.secpod.oval:def:71630 The host is installed with VideoLAN VLC media player 3.0.0 before 3.0.9 and is prone to a denial of service vulnerability. A flaw is present in the libmicrodns, which fails to properly handle the parsing of mDNS messages. Successful exploitation cause an out-of-bounds read that would result in a den ... oval:org.secpod.oval:def:71632 The host is installed with VideoLAN VLC media player 3.0.0 before 3.0.9 and is prone to a denial of service vulnerability. A flaw is present in the libmicrodns, when encountering errors while parsing mDNS messages, some allocated data is not freed. Successful exploitation cause a denial of service. oval:org.secpod.oval:def:20723 The host is installed with VideoLAN VLC Media Player before 2.1.5 and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to handle a long session id in a ServerHello message. Successful exploitation allows attackers to cause a denial of service. |