CVE-2007-3467
EPSS 1.0%
Description
Integer overflow in the __status_Update function in stats.c VideoLAN VLC Media Player before 0.8.6c allows remote attackers to cause a denial of service (crash) via a WAV file with a large sample rate.
How to fix CVE-2007-3467
To remediate CVE-2007-3467, upgrade the affected package to a fixed version below.
- Debian/vlc—upgrade to 0.8.6.c-1 or later
Is CVE-2007-3467 being exploited?
Low — EPSS is 1.0%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 0.8.6.c-1