CVE-2007-6681

EPSS 39.0%

vlc - several vulnerabilities

Published: 1/17/2008Modified: 4/28/2026

Also known as:DEBIAN-CVE-2007-6681

Description

Stack-based buffer overflow in modules/demux/subtitle.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via a long subtitle in a (1) MicroDvd, (2) SSA, and (3) Vplayer file.

Affected packages (2)

Debian/vlcfrom 0, < 0.8.6.c-4.1
Debian/vlcfrom 0, < 0.8.6-svn20061012.debian-5.1+etch2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6681