CVE-2008-3732
EPSS 32.1%vlc - several integer overflows
發布日:2008/8/20修改日:2026/4/28
描述
Integer overflow in the Open function in modules/demux/tta.c in VLC Media Player 0.8.6i allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TTA file, which triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
受影響套件(2)
- Debian/vlcfrom 0, < 0.8.6.h-2
- Debian/vlcfrom 0, < 0.8.6.h-1+lenny1