Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service (crash) or execute arbitrary code via format string specifiers in (1) an Ogg/Vorbis file, (2) an Ogg/Theora file, (3) a CDDB entry for a CD Digital Audio (CDDA) file, or (4) Service Announce Protocol (SAP) multicast packets.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:32
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://osvdb.org/37379 - | |
| References | () http://osvdb.org/37380 - | |
| References | () http://osvdb.org/37381 - | |
| References | () http://osvdb.org/37382 - | |
| References | () http://secunia.com/advisories/25753 - Patch, Vendor Advisory | |
| References | () http://secunia.com/advisories/25980 - | |
| References | () http://secunia.com/advisories/26269 - | |
| References | () http://security.gentoo.org/glsa/glsa-200707-12.xml - | |
| References | () http://www.debian.org/security/2007/dsa-1332 - | |
| References | () http://www.isecpartners.com/advisories/2007-001-vlc.txt - | |
| References | () http://www.kb.cert.org/vuls/id/200928 - US Government Resource | |
| References | () http://www.securityfocus.com/archive/1/471933/100/0/threaded - | |
| References | () http://www.securityfocus.com/bid/24555 - | |
| References | () http://www.videolan.org/sa0702.html - Patch | |
| References | () http://www.vupen.com/english/advisories/2007/2262 - | |
| References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14600 - |
Information
Published : 2007-06-21 18:30
Updated : 2024-11-21 00:32
NVD link : CVE-2007-3316
Mitre link : CVE-2007-3316
CVE.ORG link : CVE-2007-3316
JSON object : View
Products Affected
videolan
- vlc_media_player
CWE