This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:videolan:vlc_media_player:0.8.6
Detail
VendorVideolanFirst view 2007-01-02
ProductVlc Media PlayerLast view2019-07-30
Version0.8.6TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:videolan:vlc_media_player

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32019-07-30CVE-2019-5460NetworkMediumNone Requ...
5.82019-07-30CVE-2019-5459NetworkMediumNone Requ...
7.52019-07-18CVE-2019-13962NetworkLowNone Requ...
4.32019-07-16CVE-2019-13615NetworkMediumNone Requ...
6.82019-07-14CVE-2019-13602NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32019-06-13CVE-2019-5439NetworkMediumNone Requ...
6.82018-07-11CVE-2018-11529NetworkMediumNone Requ...
6.82017-12-15CVE-2017-17670NetworkMediumNone Requ...
6.82017-05-29CVE-2017-9301NetworkMediumNone Requ...
6.82017-05-29CVE-2017-9300NetworkMediumNone Requ...
4.32017-05-23CVE-2017-8313NetworkMediumNone Requ...
4.32017-05-23CVE-2017-8312NetworkMediumNone Requ...
6.82017-05-23CVE-2017-8311NetworkMediumNone Requ...
7.52016-06-08CVE-2016-5108NetworkLowNone Requ...
4.32016-04-18CVE-2016-3941NetworkMediumNone Requ...
6.82015-08-25CVE-2015-5949NetworkMediumNone Requ...
4.32015-08-17CVE-2014-9743NetworkMediumNone Requ...
7.52014-12-26CVE-2011-3623NetworkLowNone Requ...
7.52014-12-26CVE-2010-2062NetworkLowNone Requ...
7.52014-12-26CVE-2010-1445NetworkLowNone Requ...
7.52014-12-26CVE-2010-1444NetworkLowNone Requ...
52014-12-26CVE-2010-1443NetworkLowNone Requ...
7.52014-12-26CVE-2010-1442NetworkLowNone Requ...
7.52014-12-26CVE-2010-1441NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
56% (26)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
13% (6)CWE-189Numeric Errors
10% (5)CWE-125Out-of-bounds Read
4% (2)CWE-416Use After Free
4% (2)CWE-20Improper Input Validation
Hide | Show 5 More...
%idName
2% (1)CWE-415Double Free
2% (1)CWE-399Resource Management Errors
2% (1)CWE-191Integer Underflow (Wrap or Wraparound)
2% (1)CWE-134Uncontrolled Format String
2% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:15299Heap-based buffer overflow in the Ogg_DecodePacket function in the OGG demuxe...
oval:org.mitre.oval:def:14774Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8...
oval:org.mitre.oval:def:12757DSA-2257-1 kolab-cyrus-imapd -- implementation error
oval:org.mitre.oval:def:17023The ASF Demuxer (modules/demux/asf/asf.c) in VideoLAN VLC media player 2.0.5 ...
oval:org.mitre.oval:def:12190Untrusted search path vulnerability in bin/winvlc.c in VLC Media Player 1.1.3...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:12718DSA-2159-1 vlc -- missing input sanitising
oval:org.mitre.oval:def:12415Denial of service vulnerability in the MKV demuxer plugin in VideoLAN VLC med...
oval:org.mitre.oval:def:11992DSA-2211-1 vlc -- missing input sanitising
oval:org.mitre.oval:def:14820Stack-based buffer overflow in VideoLAN VLC media player before 2.0.1
oval:org.mitre.oval:def:14858Heap-based buffer overflow in the AVI_ChunkRead_strf function in libavi.c in ...
oval:org.mitre.oval:def:8254DSA-1819 vlc -- several vulnerabilities
oval:org.mitre.oval:def:14798Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5
oval:org.mitre.oval:def:13455DSA-1819-1 vlc -- several vulnerabilities
oval:org.mitre.oval:def:17226Multiple buffer overflows in VideoLAN VLC media player 2.0.4 and earlier via ...
oval:org.mitre.oval:def:14718libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote...
oval:org.mitre.oval:def:19318VideoLAN VLC Media Player 2.0.8 and earlier allows remote attackers to cause ...
oval:org.mitre.oval:def:13950Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN V...
oval:org.mitre.oval:def:12460Multiple heap-based buffer overflow vulnerabilities in VideoLAN VLC Media Pla...
oval:org.mitre.oval:def:24040VLC Media Player RTSP Processing "parseRTSPRequestString()" Buffer Overflow V...
oval:org.mitre.oval:def:16781The SHAddToRecentDocs function in VideoLAN VLC media player 2.0.4 and earlier...
oval:org.mitre.oval:def:26471Denial of service vulnerability in VideoLAN VLC Media Player via a crafted pl...
oval:org.mitre.oval:def:14280Vulnerability in axvlc.dll in VideoLAN VLC 0.8.6 before 0.8.6d
oval:org.mitre.oval:def:18086Buffer overflow in the mp4a packetizer (modules/packetizer/mpeg4audio.c) in V...
oval:org.mitre.oval:def:25069DSA-2973-1 -- vlc - security update
oval:org.mitre.oval:def:14817Multiple heap-based buffer overflows in VideoLAN VLC media player before 2.0.1

SAINT Exploits

DescriptionLink
VideoLAN VLC Media Player MKV Demuxer Code ExecutionMore info here
VideoLAN VLC Media Player MMS URI Stack OverflowMore info here

Open Source Vulnerability Database (OSVDB)

idDescription
74737VLC Media Player XSPF Playlist Processing DoS
74736VLC Media Player ZIP Archive Decompression DoS
74735VLC Media Player Real Time Messaging Protocol (RTMP) Parsing Overflow
74734VLC Media Player AVI / ASF / Matroska (MKV) Decoding Unspecified DoS
74733VLC Media Player A/52 / DTS / MPEG Audio Decoding Overflow
Hide | Show 13 More...
idDescription
74057VLC Media Player AVI Demuxer libavi.c AVI_ChunkRead_strf Function Overflow
73450VLC Media Player XSPF Playlist Parser Unspecified Overflow
72577FFmpeg LibAVCodec Sunplus JPEG Decoder AMV File Handling Arbitrary Code Execu...
71278VLC Media Player libdirectx_plugin.dll NSV File Large Video Dimension Overflow
71277VLC Media Player libdirectx_plugin.dll AMV File Large Video Dimension Overflow
70698VLC Media Player MKV Demuxer modules/demux/mkv/mkv.hpp MKV_IS_ID Macro Arbitr...
70656VLC Media Player CDG Decoder cdg.c Crafted Video File Handling Overflow DoS
70242VLC Media Player modules/demux/real.c Array Indexing Error Code Execution
67492VLC Media Player Path Subversion Arbitrary DLL Injection Code Execution
61895VLC Media Player OGG / ASS File Handling Overflow
49808VLC Media Player CUE Demuxer Image File Handling Overflow
42192VLC Media Player ActiveX (axvlc.dll) Multiple Function Arbitrary Code Execution
31163VLC Media Player udp:// URI Handling Format String

ExploitDB Exploits

idDescription
17048VLC AMV Dangling Pointer Vulnerability

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-09-15Name : FreeBSD Ports: vlc
File : nvt/freebsd_vlc6.nasl
2012-07-25Name : VLC Media Player OGG Demuxer Buffer Overflow Vulnerability (Windows)
File : nvt/gb_vlc_media_player_ogg_demuxer_bof_vuln_win.nasl
2012-03-21Name : VLC Media Player Multiple Vulnerabilities - Mar 12 (Linux)
File : nvt/gb_vlc_media_player_mult_vuln_mar12_lin.nasl
2012-03-21Name : VLC Media Player Multiple Vulnerabilities - Mar 12 (MAC OS X)
File : nvt/gb_vlc_media_player_mult_vuln_mar12_macosx.nasl
2012-03-21Name : VLC Media Player Multiple Vulnerabilities - Mar 12 (Windows)
File : nvt/gb_vlc_media_player_mult_vuln_mar12_win.nasl
Hide | Show 20 More...
idDescription
2011-09-23Name : Ubuntu Update for ffmpeg USN-1209-1
File : nvt/gb_ubuntu_USN_1209_1.nasl
2011-09-23Name : Ubuntu Update for libav USN-1209-2
File : nvt/gb_ubuntu_USN_1209_2.nasl
2011-08-03Name : Debian Security Advisory DSA 2257-1 (vlc)
File : nvt/deb_2257_1.nasl
2011-07-29Name : VLC Media Player '.AVI' File BOF Vulnerability (Linux)
File : nvt/secpod_vlc_media_player_avi_bof_vuln_lin.nasl
2011-07-29Name : VLC Media Player '.AVI' File BOF Vulnerability (Windows)
File : nvt/secpod_vlc_media_player_avi_bof_vuln_win.nasl
2011-07-14Name : VLC Media Player 'AMV' Denial of Service Vulnerability (Linux)
File : nvt/gb_vlc_media_player_amv_dos_vuln_lin.nasl
2011-07-14Name : VLC Media Player 'AMV' Denial of Service Vulnerability (Windows)
File : nvt/gb_vlc_media_player_amv_dos_vuln_win.nasl
2011-07-01Name : VLC Media Player XSPF Playlist Integer Overflow Vulnerability (Linux)
File : nvt/secpod_vlc_media_player_xspf_int_overflow_vuln_lin.nasl
2011-07-01Name : VLC Media Player XSPF Playlist Integer Overflow Vulnerability (Windows)
File : nvt/secpod_vlc_media_player_xspf_int_overflow_vuln_win.nasl
2011-05-12Name : Debian Security Advisory DSA 2211-1 (vlc)
File : nvt/deb_2211_1.nasl
2011-04-01Name : VLC Media Player AMV and NSV Data Processing Memory Corruption vulnerability ...
File : nvt/secpod_vlc_media_player_mem_crptn_vuln_win.nasl
2011-03-07Name : Debian Security Advisory DSA 2159-1 (vlc)
File : nvt/deb_2159_1.nasl
2011-03-05Name : FreeBSD Ports: vlc
File : nvt/freebsd_vlc4.nasl
2011-02-23Name : VLC Media Player '.mkv' Code Execution Vulnerability (Linux)
File : nvt/secpod_vlc_media_player_code_exec_vuln_lin.nasl
2011-02-23Name : VLC Media Player '.mkv' Code Execution Vulnerability (Windows)
File : nvt/secpod_vlc_media_player_code_exec_vuln_win.nasl
2011-01-31Name : VLC Media Player 'CDG decoder' multiple buffer overflow vulnerabilities (Linux)
File : nvt/gb_vlc_media_player_bof_vuln_jan11_lin.nasl
2011-01-31Name : VLC Media Player 'CDG decoder' multiple buffer overflow vulnerabilities (Wind...
File : nvt/gb_vlc_media_player_bof_vuln_jan11_win.nasl
2011-01-08Name : VLC Media Player Real Demuxer File Handling Array Indexing Vulnerabilities (Win)
File : nvt/gb_vlc_media_player_mult_bof_vuln_win.nasl
2010-09-03Name : VLC Media Player File Opening Insecure Library Loading Vulnerability (Win)
File : nvt/gb_vlc_media_player_insecure_lib_load_vuln_win.nasl
2010-05-04Name : FreeBSD Ports: vlc
File : nvt/freebsd_vlc2.nasl

Snort® IPS/IDS

DateDescription
2014-01-10VLC Media Player udp URI format string attempt - multipacket
RuleID : 9846 - Type : WEB-CLIENT - Revision : 7
2014-01-10VLC Media Player udp URI format string attempt
RuleID : 9844 - Type : FILE-MULTIMEDIA - Revision : 15
2019-09-17VideoLAN VLC Media Player Live555 RTSP plugin stack-based buffer overflow att...
RuleID : 51040 - Type : FILE-MULTIMEDIA - Revision : 1
2015-06-09VideoLAN VLC Media Player XSPF integer overflow attempt
RuleID : 34344 - Type : FILE-MULTIMEDIA - Revision : 3
2015-06-09VideoLAN VLC Media Player XSPF integer overflow attempt
RuleID : 34343 - Type : FILE-MULTIMEDIA - Revision : 3
Hide | Show 10 More...
DateDescription
2014-04-17VideoLAN VLC Media Player Live555 RTSP plugin stack-based buffer overflow att...
RuleID : 30215 - Type : FILE-MULTIMEDIA - Revision : 5
2014-01-10VideoLAN VLC webm memory corruption attempt
RuleID : 24283 - Type : FILE-MULTIMEDIA - Revision : 5
2014-01-10VLC mms hostname buffer overflow attempt
RuleID : 23577 - Type : FILE-OTHER - Revision : 9
2014-01-10VLC mms hostname buffer overflow attempt
RuleID : 21922 - Type : FILE-OTHER - Revision : 11
2014-01-10VideoLAN VLC webm memory corruption attempt
RuleID : 20227 - Type : FILE-MULTIMEDIA - Revision : 12
2014-01-10VideoLAN VLC Media Player libdirectx_plugin.dll AMV parsing buffer overflow a...
RuleID : 19883 - Type : FILE-MULTIMEDIA - Revision : 7
2014-01-10VideoLAN VLC ActiveX function call unicode access
RuleID : 12806 - Type : WEB-ACTIVEX - Revision : 5
2014-01-10VideoLAN VLC ActiveX function call access
RuleID : 12805 - Type : BROWSER-PLUGINS - Revision : 9
2014-01-10VideoLAN VLC ActiveX clsid unicode access
RuleID : 12804 - Type : WEB-ACTIVEX - Revision : 5
2014-01-10VideoLAN VLC ActiveX clsid access
RuleID : 12803 - Type : BROWSER-PLUGINS - Revision : 10

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2018-07-23Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_dc57ad48ecbb439ba4d05869be47684e.nasl - Type : ACT_GATHER_INFO
2018-07-20Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4251.nasl - Type : ACT_GATHER_INFO
2018-05-18Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4203.nasl - Type : ACT_GATHER_INFO
2017-11-22Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4045.nasl - Type : ACT_GATHER_INFO
2017-10-02Name : The remote openSUSE host is missing a security update.
File : openSUSE-2017-1100.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2017-10-02Name : The remote openSUSE host is missing a security update.
File : openSUSE-2017-1101.nasl - Type : ACT_GATHER_INFO
2017-07-10Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201707-10.nasl - Type : ACT_GATHER_INFO
2017-06-28Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3899.nasl - Type : ACT_GATHER_INFO
2017-06-02Name : A media player installed on the remote host is affected by multiple vulnerabi...
File : vlc_2_2_5.nasl - Type : ACT_GATHER_INFO
2017-01-17Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201701-39.nasl - Type : ACT_GATHER_INFO
2016-06-23Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-754.nasl - Type : ACT_GATHER_INFO
2016-06-23Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-755.nasl - Type : ACT_GATHER_INFO
2016-06-14Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_6d4028572fba11e69f315404a68ad561.nasl - Type : ACT_GATHER_INFO
2016-06-09Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3598.nasl - Type : ACT_GATHER_INFO
2016-03-14Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201603-08.nasl - Type : ACT_GATHER_INFO
2016-02-17Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-213.nasl - Type : ACT_GATHER_INFO
2015-08-24Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3342.nasl - Type : ACT_GATHER_INFO
2015-08-21Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_a0a4e24c476011e593913c970e169bc2.nasl - Type : ACT_GATHER_INFO
2014-11-06Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201411-01.nasl - Type : ACT_GATHER_INFO
2014-07-09Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2973.nasl - Type : ACT_GATHER_INFO
2014-02-04Name : The remote Windows host contains a media player that is affected by a buffer ...
File : vlc_2_1_2.nasl - Type : ACT_GATHER_INFO
2013-10-27Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201310-12.nasl - Type : ACT_GATHER_INFO
2013-10-27Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201310-13.nasl - Type : ACT_GATHER_INFO
2013-10-23Name : The remote Windows host contains a media player that is affected by a buffer ...
File : vlc_2_0_9.nasl - Type : ACT_GATHER_INFO
2013-07-23Name : The remote Windows host contains a media player that is affected by multiple ...
File : vlc_2_0_7.nasl - Type : ACT_GATHER_INFO