Executive Summary
Summary | |
---|---|
Title | vlc security update |
Informations | |||
---|---|---|---|
Name | DSA-2211 | First vendor Publication | 2011-04-06 |
Vendor | Debian | Last vendor Modification | 2011-04-06 |
Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Ricardo Narvaja discovered that missing input sanitising in VLC, a multimedia player and streamer, could lead to the execution of arbitrary code if a user is tricked into opening a malformed media file. This update also provides updated packages for oldstable (lenny) for vulnerabilities, which have already been addressed in Debian stable (squeeze), either during the freeze or in DSA-2159. (CVE-2010-0522, CVE-2010-1441, CVE-2010-1442, CVE-2011-0531) For the oldstable distribution (lenny), this problem has been fixed in version 0.8.6.h-4+lenny3. For the stable distribution (squeeze), this problem has been fixed in version 1.1.3-1squeeze4. For the unstable distribution (sid), this problem has been fixed in version 1.1.8-1. We recommend that you upgrade your vlc packages. |
Original Source
Url : http://www.debian.org/security/2011/dsa-2211 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
67 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
17 % | CWE-264 | Permissions, Privileges, and Access Controls |
17 % | CWE-20 | Improper Input Validation |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:11992 | |||
Oval ID: | oval:org.mitre.oval:def:11992 | ||
Title: | DSA-2211-1 vlc -- missing input sanitising | ||
Description: | Ricardo Narvaja discovered that missing input sanitising in VLC, a multimedia player and streamer, could lead to the execution of arbitrary code if a user is tricked into opening a malformed media file. This update also provides updated packages for oldstable for vulnerabilities, which have already been addressed in Debian stable , either during the freeze or in DSA-2159 | ||
Family: | unix | Class: | patch |
Reference(s): | DSA-2211-1 CVE-2010-3275 CVE-2010-3276 CVE-2010-0522 CVE-2010-1441 CVE-2010-1442 CVE-2011-0531 | Version: | 5 |
Platform(s): | Debian GNU/Linux 5.0 Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0 | Product(s): | vlc |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:12415 | |||
Oval ID: | oval:org.mitre.oval:def:12415 | ||
Title: | Denial of service vulnerability in the MKV demuxer plugin in VideoLAN VLC media player in VideoLAN VLC Media Player before 1.1.7 | ||
Description: | demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary commands via a crafted MKV (WebM or Matroska) file that triggers memory corruption, related to "class mismatching" and the MKV_IS_ID macro. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2011-0531 | Version: | 9 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP | Product(s): | VLC Media Player |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:12718 | |||
Oval ID: | oval:org.mitre.oval:def:12718 | ||
Title: | DSA-2159-1 vlc -- missing input sanitising | ||
Description: | Dan Rosenberg discovered that insufficient input validation in VLC's processing of Matroska/WebM containers could lead to the execution of arbitrary code. | ||
Family: | unix | Class: | patch |
Reference(s): | DSA-2159-1 CVE-2011-0531 | Version: | 5 |
Platform(s): | Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0 | Product(s): | vlc |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:14718 | |||
Oval ID: | oval:org.mitre.oval:def:14718 | ||
Title: | libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability." | ||
Description: | libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3275 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP | Product(s): | VLC Media Player |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:14873 | |||
Oval ID: | oval:org.mitre.oval:def:14873 | ||
Title: | libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an NSV file | ||
Description: | libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an NSV file. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3276 | Version: | 6 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP | Product(s): | VLC Media Player |
Definition Synopsis: | |||
CPE : Common Platform Enumeration
SAINT Exploits
Description | Link |
---|---|
VideoLAN VLC Media Player MKV Demuxer Code Execution | More info here |
ExploitDB Exploits
id | Description |
---|---|
2011-03-26 | VLC AMV Dangling Pointer Vulnerability |
OpenVAS Exploits
Date | Description |
---|---|
2011-05-12 | Name : Debian Security Advisory DSA 2211-1 (vlc) File : nvt/deb_2211_1.nasl |
2011-04-01 | Name : VLC Media Player AMV and NSV Data Processing Memory Corruption vulnerability ... File : nvt/secpod_vlc_media_player_mem_crptn_vuln_win.nasl |
2011-03-07 | Name : Debian Security Advisory DSA 2159-1 (vlc) File : nvt/deb_2159_1.nasl |
2011-03-05 | Name : FreeBSD Ports: vlc File : nvt/freebsd_vlc4.nasl |
2011-02-23 | Name : VLC Media Player '.mkv' Code Execution Vulnerability (Linux) File : nvt/secpod_vlc_media_player_code_exec_vuln_lin.nasl |
2011-02-23 | Name : VLC Media Player '.mkv' Code Execution Vulnerability (Windows) File : nvt/secpod_vlc_media_player_code_exec_vuln_win.nasl |
2010-05-12 | Name : Mac OS X 10.6.3 Update / Mac OS X Security Update 2010-002 File : nvt/macosx_upd_10_6_3_secupd_2010-002.nasl |
2010-05-04 | Name : FreeBSD Ports: vlc File : nvt/freebsd_vlc2.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
74734 | VLC Media Player AVI / ASF / Matroska (MKV) Decoding Unspecified DoS |
74733 | VLC Media Player A/52 / DTS / MPEG Audio Decoding Overflow |
71278 | VLC Media Player libdirectx_plugin.dll NSV File Large Video Dimension Overflow VLC Media Player is prone to an overflow condition. libdirectx_plugin.dll fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted width in an NSV file, a context-dependent attacker can potentially execute arbitrary code. |
71277 | VLC Media Player libdirectx_plugin.dll AMV File Large Video Dimension Overflow VLC Media Player is prone to an overflow condition. libdirectx_plugin.dll fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted width in an AMV file, a context-dependent attacker can potentially execute arbitrary code. |
70698 | VLC Media Player MKV Demuxer modules/demux/mkv/mkv.hpp MKV_IS_ID Macro Arbitr... VLC Media Player contains an input validation error within the 'MKV_IS_ID' macro in 'modules/demux/mkv/mkv.hpp' of the MKV demuxer. This may be exploited by a context-dependent attacker with a crafted MKV file to execute arbitrary code. |
63387 | Apple Mac OS X Server Admin Screen Sharing Revoked Administrator Persistent A... |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | VideoLAN VLC webm memory corruption attempt RuleID : 24283 - Revision : 5 - Type : FILE-MULTIMEDIA |
2014-01-10 | VideoLAN VLC webm memory corruption attempt RuleID : 20227 - Revision : 12 - Type : FILE-MULTIMEDIA |
2014-01-10 | VideoLAN VLC Media Player libdirectx_plugin.dll AMV parsing buffer overflow a... RuleID : 19883 - Revision : 7 - Type : FILE-MULTIMEDIA |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2014-11-06 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201411-01.nasl - Type : ACT_GATHER_INFO |
2011-04-07 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2211.nasl - Type : ACT_GATHER_INFO |
2011-03-25 | Name : The remote Windows host contains a media player that is affected by multiple ... File : vlc_1_1_8.nasl - Type : ACT_GATHER_INFO |
2011-02-11 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2159.nasl - Type : ACT_GATHER_INFO |
2011-02-02 | Name : The remote Windows host contains an media player that is affected by a code e... File : vlc_1_1_7.nasl - Type : ACT_GATHER_INFO |
2010-08-26 | Name : The remote Windows host contains an application that suffers from multiple vu... File : vlc_1_0_6.nasl - Type : ACT_GATHER_INFO |
2010-03-29 | Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_SecUpd2010-002.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-12-27 00:26:26 |
|
2014-02-17 11:30:04 |
|
2013-05-11 00:44:01 |
|