Vulnerabilities > Videolan > VLC > 0.8.6d

DATE CVE VULNERABILITY TITLE RISK
2008-04-25 CVE-2008-1768 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Videolan VLC
Multiple integer overflows in VLC before 0.8.6f allow remote attackers to cause a denial of service (crash) via the (1) MP4 demuxer, (2) Real demuxer, and (3) Cinepak codec, which triggers a buffer overflow.
network
videolan CWE-119
6.8
6.8
2008-01-17 CVE-2007-6684 Improper Input Validation vulnerability in Videolan VLC 0.8.6D
The RTSP module in VideoLAN VLC 0.8.6d allows remote attackers to cause a denial of service (crash) via a request without a Transport parameter, which triggers a NULL pointer dereference.
network
low complexity
videolan CWE-20
5.0
5.0
2008-01-17 CVE-2007-6683 Unspecified vulnerability in Videolan VLC 0.8.6D
The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via (1) the :demuxdump-file option in a filename in a playlist, or (2) a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability.
network
low complexity
videolan
5.0
5.0