Описание
Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle.c) in VLC 0.8.6e allows remote attackers to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 0.8.6.release.e+zdebian-2.3ubuntu1 |
| feisty | ignored | end of life, was needed |
| gutsy | ignored | end of life, was needed |
| hardy | released | 0.8.6.release.e+x264svn20071224+faad2.6.1-0ubuntu3.1 |
| intrepid | released | 0.8.6.release.e+zdebian-2.3ubuntu1 |
| jaunty | released | 0.8.6.release.e+zdebian-2.3ubuntu1 |
| karmic | released | 0.8.6.release.e+zdebian-2.3ubuntu1 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
6.8 Medium
CVSS2
Связанные уязвимости
Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle.c) in VLC 0.8.6e allows remote attackers to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681.
Stack-based buffer overflow in the ParseSSA function (modules/demux/su ...
Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle.c) in VLC 0.8.6e allows remote attackers to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681.
Уязвимость функции ParseSSA (modules/demux/subtitle.c) программы-медиапроигрывателя VideoLAN VLC, позволяющая нарушителю выполнить произвольный код
6.8 Medium
CVSS2