Download
| Alert*
oval:org.secpod.oval:def:1979
A version of VLC Player is installed on the host. oval:org.secpod.oval:def:25651 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25644 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:34010 The host is installed with VideoLAN vlc media player before 2.2.0 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted wav file, related to "seek across EOF". Successful exploitation could allow remote attackers to cause a denial of s ... oval:org.secpod.oval:def:25646 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25647 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25648 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25649 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to an invalid memory access vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25652 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25653 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25654 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25655 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25656 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to an invalid memory access vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:25645 The host is installed with VideoLAN VLC Media Player 2.1.5 or earlier and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unknown impact. oval:org.secpod.oval:def:35695 The host is installed with VideoLAN vlc media player before 2.2.4 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a QuickTime IMA file. Successful exploitation could allow remote attackers to cause a denial of service (crash) or possibly e ... oval:org.secpod.oval:def:14952 The host is installed with VideoLAN VLC media player before 2.0.4 and is prone to multiple buffer overflows vulnerability. The flaw is present in the application, which fails to handle vectors related to the (1) freetype renderer and (2) HTML subtitle parser. Successful exploitation could allow atta ... oval:org.secpod.oval:def:14951 The host is installed with VideoLAN VLC media player before 2.0.4 and is prone to denial of service vulnerability. The flaw is present in the SHAddToRecentDocs function, which fails to handle a crafted file name that triggers an incorrect string-length calculation when the file is added to VLC. Succ ... oval:org.secpod.oval:def:40647 The host is installed with VideoLAN vlc media player before 2.2.5 and is prone to a heap based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted subtitle file. Successful exploitation could allow remote attackers to execute arbitrary code. oval:org.secpod.oval:def:40648 The host is installed with VideoLAN vlc media player before 2.2.5 and is prone to a heap out-of-bound read vulnerability. A flaw is present in the application, which fails to handle a crafted subtitle file. Successful exploitation could allow remote attackers to read data beyond allocated memory and ... oval:org.secpod.oval:def:39563 The host is installed with VideoLAN VLC Media Player before 2.1.5 and is prone to heap overflow vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:26775 The host is installed with VideoLAN VLC Media Player before 2.2.0 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to handle crafted path info. Successful exploitation could allow attackers to inject arbitrary web script or HTML. oval:org.secpod.oval:def:40669 The host is installed with VideoLAN VLC media player 2.2.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted FLAC file. Successful exploitation could allow remote attackers to cause a denial of service (heap corruption and applic ... oval:org.secpod.oval:def:40670 The host is installed with VideoLAN VLC media player 2.2.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted file. Successful exploitation could allow remote attackers denial of service (invalid read and application crash) or pos ... oval:org.secpod.oval:def:26235 The host is installed with VideoLAN VLC Media Player 2.2.1 or earlier and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted 3GP file. Successful exploitation allows attackers to crash the service or execute arbitrary code. oval:org.secpod.oval:def:1980 The host is installed with VideoLAN VLC media player 1.1.x before 1.1.11, and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the DemuxAudioSipr function in real.c in the RealMedia demuxer in the application, which fails to validate user supplied input. Successful exploi ... oval:org.secpod.oval:def:1981 The host is installed with VideoLAN VLC media player 0.5.0 through 1.1.10, and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the AVI_ChunkRead_strf function in libavi.c in the AVI demuxer in the application, which fails to sanitize user supplied input. Successful explo ... oval:org.secpod.oval:def:14953 The host is installed with VideoLAN VLC media player before 2.0.5 and is prone to buffer overflow vulnerability. The flaw is present in the ASF Demuxer (modules/demux/asf/asf.c), which fails to handle a crafted ASF movie that triggers an out-of-bounds read. Successful exploitation could allow attack ... oval:org.secpod.oval:def:20725 The host is installed with VideoLAN VLC Media Player before 2.0.7 and is prone to memory exhaustion vulnerability. A flaw is present in the application, which fails to handle crafted playlist files. Successful exploitation allows attackers to cause a denial of service. oval:org.secpod.oval:def:43236 The host is installed with VideoLAN VLC media player through 2.2.8 and is prone to a type conversion vulnerability. A flaw is present in the application, which fails to handle a crafted file. Successful exploitation could allow remote attackers to change the type of a box between a read operation an ... oval:org.secpod.oval:def:45755 The host is installed with VideoLAN VLC media player 3.0.1 and is prone to a denial-of-service vulnerability. A flaw is present in the application, which fails to handle a crafted .swf file. Successful exploitation could allow attackers to cause a denial-of-service. oval:org.secpod.oval:def:4835 The host is installed with VideoLAN VLC media player before 2.0.1 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted MMS:// stream. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:4836 The host is installed with VideoLAN VLC media player before 2.0.1 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted Real RTSP stream. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:50020 The host is installed with VideoLAN VLC media player 3.0.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle the magic cookies in CAF files. Successful exploitation could allow attackers to perform a denial of service or a potenti ... oval:org.secpod.oval:def:5221 The host is installed with VideoLAN VLC media player 2.0.1 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted MP4 file. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:55469 The host is installed with VideoLAN VLC media player before 3.0.7 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle an invalid AVI file. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:55537 The host is installed with VideoLAN VLC media player through 3.0.7 and is prone to a double free vulnerability. A flaw is present in the application, which fails to properly handle an issue in modules/demux/mkv/util.cpp file. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:57422 The host is installed with VideoLAN VLC media player through 3.0.7.1 and is prone to an integer underflow vulnerability. A flaw is present in the application, which fails to properly handle an issue in modules/demux/mp4/mp4.c file. Successful exploitation could allow remote attackers to cause a deni ... oval:org.secpod.oval:def:57560 The host is installed with VideoLAN VLC media player 3.0.7.1 and is prone to a heap-based buffer over-read vulnerability. A flaw is present in the application, which fails to properly handle an issue in modules/demux/mkv/demux.cpp file. Successful exploitation could allow remote attackers to cause a ... oval:org.secpod.oval:def:46747 The host is installed with VideoLAN VLC media player through 2.2.8 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle crafted MKV files. Successful exploitation could allow attackers to execute arbitrary code in the context of the log ... |