CVSS: 7.8EPSS: 5%CPEs: 99EXPL: 0CVE-2012-3377 – Gentoo Linux Security Advisory 201411-01
https://notcve.org/view.php?id=CVE-2012-3377
12 Jul 2012 — Heap-based buffer overflow in the Ogg_DecodePacket function in the OGG demuxer (modules/demux/ogg.c) in VideoLAN VLC media player before 2.0.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted OGG file. Un desbordamiento de búfer basado en memoria dinámica en la función Ogg_DecodePacket en el demuxer OGG (modules/demux/ogg.c) en VideoLAN VLC media player antes de v2.0.2 permite a atacantes remotos causar una denegación de servicio (por... • http://git.videolan.org/?p=vlc/vlc-2.0.git%3Ba=commitdiff%3Bh=16e9e126333fb7acb47d363366fee3deadc8331e • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 1%CPEs: 1EXPL: 2CVE-2012-2396 – VideoLAN VLC Media Player 2.0.1 - '.mp4' Crash (PoC)
https://notcve.org/view.php?id=CVE-2012-2396
19 Apr 2012 — VideoLAN VLC media player 2.0.1 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted MP4 file. VideoLAN VLC media player v2.0.1 permite a atacantes remotos causar una denegación de servicio (error de división por cero y caída de la aplicación) a través de un archivo MP4 modificado. Multiple vulnerabilities have been found in VLC, the worst of which could lead to user-assisted execution of arbitrary code. Versions less than 2.1.2 are affected. • https://www.exploit-db.com/exploits/18757 •
CVSS: 9.3EPSS: 95%CPEs: 107EXPL: 2CVE-2012-1775 – VideoLAN VLC Media Player 2.0.0 - Mms Stream Handling Buffer Overflow
https://notcve.org/view.php?id=CVE-2012-1775
19 Mar 2012 — Stack-based buffer overflow in VideoLAN VLC media player before 2.0.1 allows remote attackers to execute arbitrary code via a crafted MMS:// stream. Un desbordamiento de búfer Basado en pila en VideoLAN VLC media player antes de v2.0.1 permite a atacantes remotos ejecutar código de su elección a través de un stream MMS:// modificado a mano. Multiple vulnerabilities have been found in VLC, the worst of which could lead to user-assisted execution of arbitrary code. Versions less than 2.1.2 are affected. • https://www.exploit-db.com/exploits/18825 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 4%CPEs: 107EXPL: 0CVE-2012-1776 – Gentoo Linux Security Advisory 201411-01
https://notcve.org/view.php?id=CVE-2012-1776
19 Mar 2012 — Multiple heap-based buffer overflows in VideoLAN VLC media player before 2.0.1 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Real RTSP stream. Múltiples desbordamientos de buffer de memoria dinámica en el reproductor multimedia VideoLAN VLC anteriores a 2.0.1. Permiten a atacantes remotos provocar una denegación de servicio (caída de la aplicación) o posiblemente ejecutar código arbitrario a través de un stream Real RTSP modificado. ... • http://osvdb.org/80189 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 60%CPEs: 1EXPL: 4CVE-2012-0904 – VideoLAN VLC Media Player 1.1.11 - '.amr' Denial of Service (PoC)
https://notcve.org/view.php?id=CVE-2012-0904
20 Jan 2012 — VLC media player 1.1.11 allows remote attackers to cause a denial of service (crash) via a long string in an amr file. VLC media player v1.1.11, permite a atacantes remotos provocar una denegación de servicio (caída) a través de una larga cadena en un archivo arm. • https://www.exploit-db.com/exploits/18309 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 4%CPEs: 14EXPL: 0CVE-2011-2587 – Gentoo Linux Security Advisory 201411-01
https://notcve.org/view.php?id=CVE-2011-2587
27 Jul 2011 — Heap-based buffer overflow in the DemuxAudioSipr function in real.c in the RealMedia demuxer in VideoLAN VLC media player 1.1.x before 1.1.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Real Media file. Desbordamiento de buffer de memoria dinámica en la función DemuxAudioSipr de real.c de RealMedia demuxer del reproductor multimedia VideoLAN VLC 1.1.x anteriores a 1.1.11 permite a atacantes remotos provocar una denegación de servi... • http://git.videolan.org/?p=vlc.git%3Ba=commit%3Bh=1bce40644cddee93b4b1877a94a6ce345f32852c • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 4%CPEs: 74EXPL: 0CVE-2011-2588 – Gentoo Linux Security Advisory 201411-01
https://notcve.org/view.php?id=CVE-2011-2588
27 Jul 2011 — Heap-based buffer overflow in the AVI_ChunkRead_strf function in libavi.c in the AVI demuxer in VideoLAN VLC media player before 1.1.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted AVI media file. Desbordamiento de búfer basado en memoria dinámica en la función AVI_ChunkRead_strf en libavi.c en el demulpiplexor AVI en el reproductor multimedia VideoLAN VLC anterior a v1.1.11 ,permite a atacantes remotos causar una denegación de ser... • http://git.videolan.org/?p=vlc.git%3Ba=commit%3Bh=9c14964bd11482d5c1d6c0e223440f9f1e5b1831 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 2%CPEs: 115EXPL: 0CVE-2011-1931 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-1931
07 Jul 2011 — sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of an unspecified array, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a malformed AMV file. sp5xdec.c en el decodificador Sunplus SP5X JPEG en libavcodec en FFmpeg antes de v0.6.3 y libav hasta v0.6.2, tal y como ... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=624339 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 18%CPEs: 40EXPL: 1CVE-2011-2194 – VideoLAN VLC Media Player 1.1.9 - XSPF Playlist Local File Integer Overflow
https://notcve.org/view.php?id=CVE-2011-2194
24 Jun 2011 — Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow. Vulnerabilidad de desbordamiento de entero en el analizador de lista de reproducción XSPF de VLC v0.8.5 a v1.1.9 permite a atacantes remotos causar una denegación de servicio (caída de la aplicación) y posiblemente ejecutar código arbitrario a través de ... • https://www.exploit-db.com/exploits/17372 • CWE-189: Numeric Errors •
CVSS: 7.8EPSS: 9%CPEs: 17EXPL: 0CVE-2011-1684 – Gentoo Linux Security Advisory 201411-01
https://notcve.org/view.php?id=CVE-2011-1684
03 May 2011 — Heap-based buffer overflow in the MP4_ReadBox_skcr function in libmp4.c in the MP4 demultiplexer in VideoLAN VLC media player 1.x before 1.1.9 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted MP4 file. Un desbordamiento de búfer en la región heap de la memoria en la función MP4_ReadBox_skcr en la biblioteca libmp4.c en el demultiplexor MP4 en el reproductor multimedia VLC de VideoLAN versiones 1.x anterior a 1.1.9, permite a los atacan... • http://git.videolan.org/?p=vlc.git%3Ba=commit%3Bh=5637ca8141bf39f263ecdb62035d2cb45c740821 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •