Computer Security

VLC media player integer overflow
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



VLC media player integer overflow
Published:01.12.2008
Source:BUGTRAQ
SecurityVulns ID:9471
Type:client
Level:6/10
Description:Integer overflow on RealMedia (.rm) files parsing leads to heap buffer overflow.
Affected:VIDEOLAN : VLC media player 0.9
CVE:CVE-2008-5276 (Integer overflow in the ReadRealIndex function in real.c in the Real demuxer plugin in VideoLAN VLC media player 0.9.0 through 0.9.7 allows remote attackers to execute arbitrary code via a malformed RealMedia (.rm) file that triggers a heap-based buffer overflow.)
Original documentdocumenttk_(at)_trapkit.de, [TKADV2008-013] VLC media player RealMedia Processing Integer Overflow Vulnerability (01.12.2008)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru