Computer Security
[EN] securityvulns.ru no-pyccku


VLC media player integer overflow
Published:01.12.2008
Source:
SecurityVulns ID:9471
Type:client
Threat Level:
6/10
Description:Integer overflow on RealMedia (.rm) files parsing leads to heap buffer overflow.
Affected:VIDEOLAN : VLC media player 0.9
CVE:CVE-2008-5276 (Integer overflow in the ReadRealIndex function in real.c in the Real demuxer plugin in VideoLAN VLC media player 0.9.0 through 0.9.7 allows remote attackers to execute arbitrary code via a malformed RealMedia (.rm) file that triggers a heap-based buffer overflow.)
Original documentdocumenttk_(at)_trapkit.de, [TKADV2008-013] VLC media player RealMedia Processing Integer Overflow Vulnerability (01.12.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod