CVE-2008-0984

Severity

93%

Complexity

86%

Confidentiality

165%

The MP4 demuxer (mp4.c) for VLC media player 0.8.6d and earlier, as used in Miro Player 1.1 and earlier, allows remote attackers to overwrite arbitrary memory and execute arbitrary code via a malformed MP4 file.

CVSS 2.0 Base Score 9.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:C/I:C/A:C).

Overview

First reported 17 years ago

2008-02-26 19:44:00

Last updated 6 years ago

2018-10-15 22:04:00

Affected Software

VideoLAN VLC Media Player

References

20080227 CORE-2008-0130: VLC media player chunk context validation error

http://www.coresecurity.com/?action=item&id=2147

DSA-1543

GLSA-200803-13

20080227 CORE-2008-0130: VLC media player chunk context validation error

28007

1019510

http://www.videolan.org/security/sa0802.html

Patch

ADV-2008-0682

Vendor Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.

CVE-2008-0984

Severity

What is severity?

Complexity

What is complexity?

Confidentiality

What is confidentiality?

Overview

First reported 17 years ago

Last updated 6 years ago

Affected Software

VideoLAN VLC Media Player

References

20080227 CORE-2008-0130: VLC media player chunk context validation error

29122

29153

29284

29766

http://www.coresecurity.com/?action=item&id=2147

DSA-1543

GLSA-200803-13

20080227 CORE-2008-0130: VLC media player chunk context validation error

28007

1019510

http://www.videolan.org/security/sa0802.html

ADV-2008-0682

Stay updated

Get in touch