Описание
Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5 might allow user-assisted attackers to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier originally included an issue related to RealText, but that issue has been assigned a separate identifier, CVE-2008-5036.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 0.9.8a-1ubuntu3 |
| gutsy | ignored | end of life, was needed |
| hardy | released | 0.8.6.release.e+x264svn20071224+faad2.6.1-0ubuntu3.3 |
| intrepid | released | 0.9.4-1ubuntu3.1 |
| jaunty | not-affected | 0.9.8a-1ubuntu3 |
| karmic | not-affected | 0.9.8a-1ubuntu3 |
| upstream | released | 0.9.8a-1 |
Показывать по
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5 might allow user-assisted attackers to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier originally included an issue related to RealText, but that issue has been assigned a separate identifier, CVE-2008-5036.
Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through ...
Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5 might allow user-assisted attackers to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier originally included an issue related to RealText, but that issue has been assigned a separate identifier, CVE-2008-5036.
EPSS
9.3 Critical
CVSS2