Описание
The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via (1) the :demuxdump-file option in a filename in a playlist, or (2) a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 0.8.6e-0ubuntu1 |
| edgy | ignored | end of life, was needed |
| feisty | ignored | end of life, was needed |
| gutsy | ignored | end of life, was needed |
| hardy | released | 0.8.6e-0ubuntu1 |
| intrepid | released | 0.8.6e-0ubuntu1 |
| jaunty | released | 0.8.6e-0ubuntu1 |
| karmic | released | 0.8.6e-0ubuntu1 |
| upstream | released | 0.8.6e |
Показывать по
Ссылки на источники
5 Medium
CVSS2
Связанные уязвимости
The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via (1) the :demuxdump-file option in a filename in a playlist, or (2) a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability.
The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to o ...
The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via (1) the :demuxdump-file option in a filename in a playlist, or (2) a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability.
5 Medium
CVSS2