CVE Vulnerabilities

CVE-2011-2194

Published: Jun 24, 2011 | Modified: Sep 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow.

Affected Software

Name Vendor Start Version End Version
Vlc_media_player Videolan 0.8.6b 0.8.6b
Vlc_media_player Videolan 1.1.3 1.1.3
Vlc_media_player Videolan 0.8.6g 0.8.6g
Vlc_media_player Videolan 1.1.7 1.1.7
Vlc_media_player Videolan 1.0.3 1.0.3
Vlc_media_player Videolan 0.9.0 0.9.0
Vlc_media_player Videolan 0.9.4 0.9.4
Vlc_media_player Videolan 1.1.4 1.1.4
Vlc_media_player Videolan 0.8.5 0.8.5
Vlc_media_player Videolan 0.9.9a 0.9.9a
Vlc_media_player Videolan 0.8.6h 0.8.6h
Vlc_media_player Videolan 0.9.10 0.9.10
Vlc_media_player Videolan 1.1.5 1.1.5
Vlc_media_player Videolan 0.8.6 0.8.6
Vlc_media_player Videolan 0.8.6c 0.8.6c
Vlc_media_player Videolan 0.8.6i 0.8.6i
Vlc_media_player Videolan 0.9.1 0.9.1
Vlc_media_player Videolan 0.9.8a 0.9.8a
Vlc_media_player Videolan 1.0.1 1.0.1
Vlc_media_player Videolan 1.1.9 1.1.9
Vlc_media_player Videolan 0.8.6a 0.8.6a
Vlc_media_player Videolan 1.1.2 1.1.2
Vlc_media_player Videolan 1.0.0 1.0.0
Vlc_media_player Videolan 0.9.5 0.9.5
Vlc_media_player Videolan 1.0.4 1.0.4
Vlc_media_player Videolan 1.1.0 1.1.0
Vlc_media_player Videolan 0.8.6f 0.8.6f
Vlc_media_player Videolan 1.0.2 1.0.2
Vlc_media_player Videolan 0.9.2 0.9.2
Vlc_media_player Videolan 1.1.6 1.1.6
Vlc_media_player Videolan 1.1.8 1.1.8
Vlc_media_player Videolan 0.9.9 0.9.9
Vlc_media_player Videolan 0.8.6e 0.8.6e
Vlc_media_player Videolan 0.8.6d 0.8.6d
Vlc_media_player Videolan 1.1.4.1 1.1.4.1
Vlc_media_player Videolan 1.1.1 1.1.1
Vlc_media_player Videolan 1.0.6 1.0.6
Vlc_media_player Videolan 1.0.5 1.0.5
Vlc_media_player Videolan 0.9.3 0.9.3
Vlc_media_player Videolan 0.9.6 0.9.6

References