Integer overflow in the MP4_ReadBox_rdrf function in libmp4.c for VLC 0.8.6e allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MP4 RDRF box that triggers a heap-based buffer overflow, a different vulnerability than CVE-2008-0984.
References
Configurations
History
No history.
Information
Published : 2008-03-25 00:44
Updated : 2024-02-28 11:21
NVD link : CVE-2008-1489
Mitre link : CVE-2008-1489
CVE.ORG link : CVE-2008-1489
JSON object : View
Products Affected
videolan
- vlc
CWE
CWE-189
Numeric Errors