CVE-2011-0531
VideoLAN VLC Media Player 1.1.6 - 'MKV' Memory Corruption
Severity Score
9.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary commands via a crafted MKV (WebM or Matroska) file that triggers memory corruption, related to "class mismatching" and the MKV_IS_ID macro.
demux/mkv/mkv.hpp en el plugin MKV demuxer en VideoLAN VLC Media Player v1.1.6.1 y anteriores permite a atacantes remotos causar una denegación de servicio (caída) y ejecutar comandos arbitrarios a través de un archivo MKV (Matroska o WebM) manipulado que realiza una corrupción de memoria, relacionado con "class mismatching" y la macro MKV_IS_ID.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2011-01-20 CVE Reserved
- 2011-02-03 CVE Published
- 2011-02-08 First Exploit
- 2024-08-06 CVE Updated
- 2024-11-12 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-20: Improper Input Validation
CAPEC
References (14)
| URL | Tag | Source |
|---|---|---|
| http://git.videolan.org/?p=vlc.git%3Ba=commit%3Bh=59491dcedffbf97612d2c572943b56ee4289dd07 | X_refsource_confirm | |
| http://osvdb.org/70698 | Vdb Entry | |
| http://secunia.com/advisories/43242 | Third Party Advisory | |
| http://www.securityfocus.com/bid/46060 | Vdb Entry | |
| http://www.securitytracker.com/id?1025018 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2011/0363 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/65045 | Vdb Entry | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12415 | Signature |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/16637 | 2011-02-08 |
| URL | Date | SRC |
|---|---|---|
| http://www.openwall.com/lists/oss-security/2011/01/31/4 | 2023-11-07 | |
| http://www.openwall.com/lists/oss-security/2011/01/31/8 | 2023-11-07 | |
| http://www.videolan.org/security/sa1102.html | 2023-11-07 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/43131 | 2023-11-07 | |
| http://www.debian.org/security/2011/dsa-2159 | 2023-11-07 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | <= 1.1.6.1 Search vendor "Videolan" for product "Vlc Media Player" and version " <= 1.1.6.1" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.1.99b Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99b" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.1.99e Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99e" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.1.99f Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99f" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.1.99g Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99g" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.1.99h Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99h" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.1.99i Search vendor "Videolan" for product "Vlc Media Player" and version "0.1.99i" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.0" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.60 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.60" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.61 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.61" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.62 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.62" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.63 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.63" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.70 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.70" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.71 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.71" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.72 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.72" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.73 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.73" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.80 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.80" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.81 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.81" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.82 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.82" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.83 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.83" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.90 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.90" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.91 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.91" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.2.92 Search vendor "Videolan" for product "Vlc Media Player" and version "0.2.92" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.3.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.3.0" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.3.1 Search vendor "Videolan" for product "Vlc Media Player" and version "0.3.1" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.4.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.0" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.4.1 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.1" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.4.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.2" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.4.3 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.3" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.4.4 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.4" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.4.5 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.5" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.4.6 Search vendor "Videolan" for product "Vlc Media Player" and version "0.4.6" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.5.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.5.0" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.5.1 Search vendor "Videolan" for product "Vlc Media Player" and version "0.5.1" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.5.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.5.2" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.5.3 Search vendor "Videolan" for product "Vlc Media Player" and version "0.5.3" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.6.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.6.0" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.6.1 Search vendor "Videolan" for product "Vlc Media Player" and version "0.6.1" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.6.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.6.2" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.7.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.7.0" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.7.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.7.2" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.8.0 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.0" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.8.1 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.1" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.8.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.2" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.8.4 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.4" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.8.5 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.5" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.8.6 Search vendor "Videolan" for product "Vlc Media Player" and version "0.8.6" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.9.2 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.2" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.9.3 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.3" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.9.4 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.4" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.9.5 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.5" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.9.6 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.6" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.9.8a Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.8a" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.9.9 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.9" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 0.9.10 Search vendor "Videolan" for product "Vlc Media Player" and version "0.9.10" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.0.0 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.0" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.0.1 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.1" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.0.2 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.2" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.0.3 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.3" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.0.4 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.4" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.0.5 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.5" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.0.6 Search vendor "Videolan" for product "Vlc Media Player" and version "1.0.6" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.1.0 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.0" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.1.1 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.1" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.1.2 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.2" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.1.3 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.3" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.1.4 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.4" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.1.5 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.5" | - |
Affected
| ||||||
| Videolan Search vendor "Videolan" | Vlc Media Player Search vendor "Videolan" for product "Vlc Media Player" | 1.1.6 Search vendor "Videolan" for product "Vlc Media Player" and version "1.1.6" | - |
Affected
| ||||||