The RTSP module in VideoLAN VLC 0.8.6d allows remote attackers to cause a denial of service (crash) via a request without a Transport parameter, which triggers a NULL pointer dereference.
References
Configurations
History
21 Nov 2024, 00:40
Type | Values Removed | Values Added |
---|---|---|
References | () http://mailman.videolan.org/pipermail/vlc-devel/2007-September/034722.html - | |
References | () http://secunia.com/advisories/29284 - | |
References | () http://trac.videolan.org/vlc/changeset/22023 - | |
References | () http://www.gentoo.org/security/en/glsa/glsa-200803-13.xml - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14876 - |
Information
Published : 2008-01-17 01:00
Updated : 2024-11-21 00:40
NVD link : CVE-2007-6684
Mitre link : CVE-2007-6684
CVE.ORG link : CVE-2007-6684
JSON object : View
Products Affected
videolan
- vlc
CWE
CWE-20
Improper Input Validation