oval:org.mitre.oval:def:14313

Definition Id: oval:org.mitre.oval:def:14313
 
Oval ID: oval:org.mitre.oval:def:14313
Title: Multiple format string vulnerabilities in VideoLAN VLC 0.7.0 through 0.8.6
Description: Multiple format string vulnerabilities in (1) the cdio_log_handler function in modules/access/cdda/access.c in the CDDA (libcdda_plugin) plugin, and the (2) cdio_log_handler and (3) vcd_log_handler functions in modules/access/vcdx/access.c in the VCDX (libvcdx_plugin) plugin, in VideoLAN VLC 0.7.0 through 0.8.6 allow user-assisted remote attackers to execute arbitrary code via format string specifiers in an invalid URI, as demonstrated by a udp://-- URI in an M3U file.
Family: windows Class: vulnerability
Reference(s): CVE-2007-0017
Version: 5
Platform(s): Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s): VLC Media Player
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:11821
 
Oval ID: oval:org.mitre.oval:def:11821
Title: VLC media player is installed
Description: VLC media player is installed
Family: windows Class: inventory
Reference(s): cpe:/a:videolan:vlc_media_player
Version: 11
Platform(s): Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows 8
Microsoft Windows Server 2012
Product(s): VLC media player
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:14313