CVE-2010-3275

VideoLAN VLC Media Player 1.1.4 - 'AMV' Dangling Pointer

Severity Score

9.3

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability."

libdirectx_plugin.dll del reproductor multimedia VideoLAN VLC en versiones anteriores a la 1.1.8 permite a atacantes remotos ejecutar código de su elección a través de una anchura modificada de un fichero AMV. Relacionado con una vulnerabilidad de puntero no liberado.

*Credits: N/A

CVSS Scores

NISTv2 9.3

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2010-09-09 CVE Reserved
2011-03-23 CVE Published
2011-03-26 First Exploit
2024-08-07 CVE Updated
2024-11-18 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

CAPEC

References (16)

URL	Tag	Source
http://securityreason.com/securityalert/8162	Third Party Advisory
http://securitytracker.com/id?1025250	Vdb Entry
http://www.coresecurity.com/content/vlc-vulnerabilities-amv-nsv-files	X_refsource_misc
http://www.osvdb.org/71277	Vdb Entry
http://www.securityfocus.com/archive/1/517150/100/0/threaded	Mailing List
https://exchange.xforce.ibmcloud.com/vulnerabilities/66259	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14718	Signature
http://git.videolan.org/?p=vlc/vlc-1.1.git;a=commitdiff;h=fe44129dc6509b3347113ab0e1a0524af1e0dd11

URL	Date	SRC
https://www.exploit-db.com/exploits/17048	2011-03-26
http://www.exploit-db.com/exploits/17048	2024-08-07
http://www.metasploit.com/modules/exploit/windows/browser/vlc_amv	2024-08-07
http://www.securityfocus.com/bid/47012	2024-08-07

URL	Date	SRC
http://www.videolan.org/vlc/releases/1.1.8.html	2018-10-10

URL	Date	SRC
http://secunia.com/advisories/43826	2018-10-10
http://www.debian.org/security/2011/dsa-2211	2018-10-10
http://www.vupen.com/english/advisories/2011/0759	2018-10-10

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				<= 1.1.7 Search vendor "Videolan" for product "Vlc Media Player" and version " <= 1.1.7"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.1.99b Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99b"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.1.99e Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99e"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.1.99f Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99f"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.1.99g Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99g"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.1.99h Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99h"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.1.99i Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99i"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.0"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.60 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.60"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.61 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.61"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.62 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.62"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.63 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.63"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.70 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.70"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.71 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.71"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.72 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.72"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.73 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.73"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.80 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.80"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.81 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.81"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.82 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.82"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.83 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.83"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.90 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.90"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.91 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.91"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.2.92 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.92"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.3.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.3.0"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.3.1 Search vendor "Videolan" for product "Vlc Media Player" and version "0.3.1"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.4.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.0"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.4.1 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.1"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.4.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.2"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.4.3 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.3"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.4.4 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.4"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.4.5 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.5"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.4.6 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.6"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.5.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.5.0"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.5.1 Search vendor "Videolan" for product "Vlc Media Player" and version "0.5.1"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.5.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.5.2"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.5.3 Search vendor "Videolan" for product "Vlc Media Player" and version "0.5.3"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.6.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.6.0"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.6.1 Search vendor "Videolan" for product "Vlc Media Player" and version "0.6.1"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.6.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.6.2"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.7.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.7.0"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.7.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.7.2"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.8.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.0"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.8.1 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.1"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.8.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.2"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.8.4 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.4"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.8.5 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.5"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.8.6 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.6"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.9.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.2"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.9.3 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.3"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.9.4 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.4"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.9.5 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.5"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.9.6 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.6"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.9.8a Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.8a"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.9.9 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.9"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				0.9.10 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.10"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.0.0 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.0"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.0.1 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.1"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.0.2 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.2"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.0.3 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.3"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.0.4 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.4"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.0.5 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.5"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.0.6 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.6"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.1.0 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.0"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.1.1 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.1"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.1.2 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.2"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.1.3 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.3"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.1.4 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.4"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.1.5 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.5"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.1.6 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.6"		-		Affected
Videolan Search vendor "Videolan"		Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player"				1.1.6.1 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.6.1"		-		Affected