Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.900112
Kategorie:Denial of Service
Titel:VLC Media Player TTA Processing Integer Overflow Vulnerability
Zusammenfassung:The host is running VLC Media Player, which is prone to a integer; overflow vulnerability.
Beschreibung:Summary:
The host is running VLC Media Player, which is prone to a integer
overflow vulnerability.

Vulnerability Insight:
The flaw is due to an overflow error when processing TTA data in Open()
method in modules/demux/tta.c file.

Vulnerability Impact:
Remote exploitation will cause application to crash or allow
execution of arbitrary code or deny the service.

Affected Software/OS:
VLC Media Player version 0.8.6i and prior on Windows (All).

Solution:
Upgrade to VLC Media Player version 1.0 or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: BugTraq ID: 30718
Common Vulnerability Exposure (CVE) ID: CVE-2008-3732
http://www.securityfocus.com/bid/30718
https://www.exploit-db.com/exploits/6252
http://security.gentoo.org/glsa/glsa-200809-06.xml
http://www.orange-bat.com/adv/2008/adv.08.16.txt
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14570
http://secunia.com/advisories/31512
http://securityreason.com/securityalert/4170
http://www.vupen.com/english/advisories/2008/2394
XForce ISS Database: vlc-mediaplayer-open-bo(44510)
https://exchange.xforce.ibmcloud.com/vulnerabilities/44510
CopyrightCopyright 2008 SecPod

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.