Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Vlc_media_player | Videolan | 0.8.5 | 0.8.5 |
| Vlc_media_player | Videolan | 0.8.6 | 0.8.6 |
| Vlc_media_player | Videolan | 0.8.6a | 0.8.6a |
| Vlc_media_player | Videolan | 0.8.6b | 0.8.6b |
| Vlc_media_player | Videolan | 0.8.6c | 0.8.6c |
| Vlc_media_player | Videolan | 0.8.6d | 0.8.6d |
| Vlc_media_player | Videolan | 0.8.6e | 0.8.6e |
| Vlc_media_player | Videolan | 0.8.6f | 0.8.6f |
| Vlc_media_player | Videolan | 0.8.6g | 0.8.6g |
| Vlc_media_player | Videolan | 0.8.6h | 0.8.6h |
| Vlc_media_player | Videolan | 0.8.6i | 0.8.6i |
| Vlc_media_player | Videolan | 0.9.0 | 0.9.0 |
| Vlc_media_player | Videolan | 0.9.1 | 0.9.1 |
| Vlc_media_player | Videolan | 0.9.2 | 0.9.2 |
| Vlc_media_player | Videolan | 0.9.3 | 0.9.3 |
| Vlc_media_player | Videolan | 0.9.4 | 0.9.4 |
| Vlc_media_player | Videolan | 0.9.5 | 0.9.5 |
| Vlc_media_player | Videolan | 0.9.6 | 0.9.6 |
| Vlc_media_player | Videolan | 0.9.8a | 0.9.8a |
| Vlc_media_player | Videolan | 0.9.9 | 0.9.9 |
| Vlc_media_player | Videolan | 0.9.9a | 0.9.9a |
| Vlc_media_player | Videolan | 0.9.10 | 0.9.10 |
| Vlc_media_player | Videolan | 1.0.0 | 1.0.0 |
| Vlc_media_player | Videolan | 1.0.1 | 1.0.1 |
| Vlc_media_player | Videolan | 1.0.2 | 1.0.2 |
| Vlc_media_player | Videolan | 1.0.3 | 1.0.3 |
| Vlc_media_player | Videolan | 1.0.4 | 1.0.4 |
| Vlc_media_player | Videolan | 1.0.5 | 1.0.5 |
| Vlc_media_player | Videolan | 1.0.6 | 1.0.6 |
| Vlc_media_player | Videolan | 1.1.0 | 1.1.0 |
| Vlc_media_player | Videolan | 1.1.1 | 1.1.1 |
| Vlc_media_player | Videolan | 1.1.2 | 1.1.2 |
| Vlc_media_player | Videolan | 1.1.3 | 1.1.3 |
| Vlc_media_player | Videolan | 1.1.4 | 1.1.4 |
| Vlc_media_player | Videolan | 1.1.4.1 | 1.1.4.1 |
| Vlc_media_player | Videolan | 1.1.5 | 1.1.5 |
| Vlc_media_player | Videolan | 1.1.6 | 1.1.6 |
| Vlc_media_player | Videolan | 1.1.7 | 1.1.7 |
| Vlc_media_player | Videolan | 1.1.8 | 1.1.8 |
| Vlc_media_player | Videolan | 1.1.9 | 1.1.9 |
| Vlc | Ubuntu | hardy | * |
| Vlc | Ubuntu | lucid | * |
| Vlc | Ubuntu | maverick | * |
| Vlc | Ubuntu | natty | * |
| Vlc | Ubuntu | upstream | * |