Show filters
212 Total Results
Displaying 41-50 of 212
Sort by:
Attacker Value
Unknown

CVE-2019-5459

Disclosure Date: July 30, 2019 (last updated November 27, 2024)
An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2019-5460

Disclosure Date: July 30, 2019 (last updated November 27, 2024)
Double Free in VLC versions <= 3.0.6 leads to a crash.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2019-13962

Disclosure Date: July 18, 2019 (last updated November 08, 2023)
lavc_CopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player through 3.0.7 has a heap-based buffer over-read because it does not properly validate the width and height.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2019-13615

Disclosure Date: July 16, 2019 (last updated November 27, 2024)
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement.
0
0
Attacker Value
Unknown

CVE-2019-13602

Disclosure Date: July 14, 2019 (last updated November 08, 2023)
An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media player through 3.0.7.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and crash) or possibly have unspecified other impact via a crafted .mp4 file.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2019-5439

Disclosure Date: June 13, 2019 (last updated November 27, 2024)
A Buffer Overflow in VLC Media Player < 3.0.7 causes a crash which can possibly be further developed into a remote code execution exploit.
0
0
Attacker Value
Unknown

CVE-2019-9618

Disclosure Date: May 13, 2019 (last updated November 27, 2024)
The GraceMedia Media Player plugin 1.0 for WordPress allows Local File Inclusion via the "cfg" parameter.
0
0
Attacker Value
Unknown

CVE-2018-19857

Disclosure Date: December 05, 2018 (last updated November 08, 2023)
The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF files, because a ReadKukiChunk() cast converts a return value to an unsigned int even if that value is negative. This could result in a denial of service and/or a potential infoleak.
0
0
Attacker Value
Unknown

CVE-2018-11529

Disclosure Date: July 11, 2018 (last updated November 27, 2024)
VideoLAN VLC media player 2.2.x is prone to a use after free vulnerability which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed exploit attempts will likely result in denial of service conditions.
0
0
Attacker Value
Unknown

CVE-2018-1151

Disclosure Date: June 12, 2018 (last updated November 26, 2024)
The web server on Western Digital TV Media Player 1.03.07 and TV Live Hub 3.12.13 allow unauthenticated remote attackers to execute arbitrary code or cause denial of service via crafted HTTP requests to toServerValue.cgi.
0
0
View More Topics  < Previous  Next >