Vulnerabilities > CVE-2008-4686 - Numeric Errors vulnerability in Videolan VLC Media Player
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Multiple integer overflows in ty.c in the TY demux plugin (aka the TiVo demuxer) in VideoLAN VLC media player, probably 0.9.4, might allow remote attackers to execute arbitrary code via a crafted .ty file, a different vulnerability than CVE-2008-4654.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 5 |
Common Weakness Enumeration (CWE)
Exploit-Db
description VLC Media Player TY File Stack Based Buffer Overflow Exploit. CVE-2008-4654,CVE-2008-4686. Local exploit for windows platform id EDB-ID:6798 last seen 2016-02-01 modified 2008-10-21 published 2008-10-21 reporter Guido Landi source https://www.exploit-db.com/download/6798/ title VLC Media Player TY File Stack Based Buffer Overflow Exploit description VLC 0.9.4 .TY File Buffer Overflow Exploit (SEH). CVE-2008-4654,CVE-2008-4686. Local exploit for windows platform id EDB-ID:6825 last seen 2016-02-01 modified 2008-10-23 published 2008-10-23 reporter Guido Landi source https://www.exploit-db.com/download/6825/ title VLC 0.9.4 - .ty Buffer Overflow Exploit SEH
Nessus
NASL family | Debian Local Security Checks |
NASL id | DEBIAN_DSA-1819.NASL |
description | Several vulnerabilities have been discovered in vlc, a multimedia player and streamer. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-1768 Drew Yao discovered that multiple integer overflows in the MP4 demuxer, Real demuxer and Cinepak codec can lead to the execution of arbitrary code. - CVE-2008-1769 Drew Yao discovered that the Cinepak codec is prone to a memory corruption, which can be triggered by a crafted Cinepak file. - CVE-2008-1881 Luigi Auriemma discovered that it is possible to execute arbitrary code via a long subtitle in an SSA file. - CVE-2008-2147 It was discovered that vlc is prone to a search path vulnerability, which allows local users to perform privilege escalations. - CVE-2008-2430 Alin Rad Pop discovered that it is possible to execute arbitrary code when opening a WAV file containing a large fmt chunk. - CVE-2008-3794 Pinar Yanardag discovered that it is possible to execute arbitrary code when opening a crafted mmst link. - CVE-2008-4686 Tobias Klein discovered that it is possible to execute arbitrary code when opening a crafted .ty file. - CVE-2008-5032 Tobias Klein discovered that it is possible to execute arbitrary code when opening an invalid CUE image file with a crafted header. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 39451 |
published | 2009-06-19 |
reporter | This script is Copyright (C) 2009-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/39451 |
title | Debian DSA-1819-1 : vlc - several vulnerabilities |
code |
|
Oval
accepted | 2012-11-19T04:00:15.414-05:00 | ||||||||
class | vulnerability | ||||||||
contributors |
| ||||||||
definition_extensions |
| ||||||||
description | Multiple integer overflows in ty.c in the TY demux plugin (aka the TiVo demuxer) in VideoLAN VLC media player, probably 0.9.4, might allow remote attackers to execute arbitrary code via a crafted .ty file, a different vulnerability than CVE-2008-4654. | ||||||||
family | windows | ||||||||
id | oval:org.mitre.oval:def:14630 | ||||||||
status | accepted | ||||||||
submitted | 2012-01-24T15:20:33.178-04:00 | ||||||||
title | Multiple integer overflows in ty.c in the TY demux plugin (aka the TiVo demuxer) in VideoLAN VLC media player | ||||||||
version | 6 |
References
- http://www.openwall.com/lists/oss-security/2008/10/19/2
- http://www.openwall.com/lists/oss-security/2008/10/22/6
- http://www.securityfocus.com/bid/31867
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14630
- http://git.videolan.org/?p=vlc.git%3Ba=commitdiff%3Bh=d859e6b9537af2d7326276f70de25a840f554dc3