CVE-2008-3732
EPSS 32.1%vlc - several integer overflows
Published: 8/20/2008Modified: 4/28/2026
Also known as:DEBIAN-CVE-2008-3732
Description
Integer overflow in the Open function in modules/demux/tta.c in VLC Media Player 0.8.6i allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TTA file, which triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
Affected packages (2)
- Debian/vlcfrom 0, < 0.8.6.h-2
- Debian/vlcfrom 0, < 0.8.6.h-1+lenny1