Vulnerabilities > Videolan > VLC Media Player > 0.8.6i
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-03-28 | CVE-2010-3275 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Videolan VLC Media Player libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability." | 9.3 |
2008-08-26 | CVE-2008-3794 | Numeric Errors vulnerability in Videolan VLC Media Player 0.8.6I Integer signedness error in the mms_ReceiveCommand function in modules/access/mms/mmstu.c in VLC Media Player 0.8.6i allows remote attackers to execute arbitrary code via a crafted mmst link with a negative size value, which bypasses a size check and triggers an integer overflow followed by a heap-based buffer overflow. | 6.8 |
2008-08-20 | CVE-2008-3732 | Numeric Errors vulnerability in Videolan VLC Media Player 0.8.6I Integer overflow in the Open function in modules/demux/tta.c in VLC Media Player 0.8.6i allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TTA file, which triggers a heap-based buffer overflow. | 9.3 |