Описание
Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before 0.9.6 might allow user-assisted attackers to execute arbitrary code via an an invalid RealText (rt) subtitle file, related to the ParseRealText function in modules/demux/subtitle.c. NOTE: this issue was SPLIT from CVE-2008-5032 on 20081110.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | code not present |
| devel | not-affected | 0.9.8a-1ubuntu1 |
| gutsy | ignored | end of life, was needed |
| hardy | not-affected | code not present |
| intrepid | released | 0.9.4-1ubuntu3.2 |
| jaunty | not-affected | 0.9.8a-1ubuntu1 |
| upstream | released | 0.9.6 |
Показывать по
9.3 Critical
CVSS2
Связанные уязвимости
Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before 0.9.6 might allow user-assisted attackers to execute arbitrary code via an an invalid RealText (rt) subtitle file, related to the ParseRealText function in modules/demux/subtitle.c. NOTE: this issue was SPLIT from CVE-2008-5032 on 20081110.
Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before ...
Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before 0.9.6 might allow user-assisted attackers to execute arbitrary code via an an invalid RealText (rt) subtitle file, related to the ParseRealText function in modules/demux/subtitle.c. NOTE: this issue was SPLIT from CVE-2008-5032 on 20081110.
9.3 Critical
CVSS2