CVE-2011-2194

EPSS 12.9%

vlc - buffer overflow

發布日:2011/6/24修改日:2026/4/28

也稱為:DEBIAN-CVE-2011-2194

描述

Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow.

受影響套件(2)

Debian/vlcfrom 0, < 1.1.10-1
Debian/vlcfrom 0, < 1.1.3-1squeeze6

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-2194