CVE-2008-4654

EPSS 82.1%

發布日:2008/10/22修改日:2026/4/28

也稱為:DEBIAN-CVE-2008-4654

描述

Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty.c) in VLC Media Player 0.9.0 through 0.9.4 allows remote attackers to execute arbitrary code via a TiVo TY media file with a header containing a crafted size value.

受影響套件(1)

Debian/vlcfrom 0, < 1.0.3-1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-4654