CVE-2008-2430

Related Files

Debian Linux Security Advisory 1819-1

Posted Jun 19, 2009

Authored by Debian | Site debian.org

Debian Security Advisory 1819-1 - Several vulnerabilities have been discovered in vlc, a multimedia player and streamer.

tags | advisory, vulnerability

systems | linux, debian

advisories | CVE-2008-1768, CVE-2008-1769, CVE-2008-1881, CVE-2008-2147, CVE-2008-2430, CVE-2008-3794, CVE-2008-4686, CVE-2008-5032

SHA-256 | 7827ca0570fa45743fb8336eab394c44bf38311c688135f7bd9b204c89d50949

Download | Favorite | View

Gentoo Linux Security Advisory 200807-13

Posted Jul 31, 2008

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200807-13 - Remi Denis-Courmont reported that VLC loads plugins from the current working directory in an unsafe manner. Versions less than 0.8.6i are affected.

tags | advisory

systems | linux, gentoo

advisories | CVE-2008-2147, CVE-2008-2430

SHA-256 | 704516c3977bd41907e153237008613021d592964b19a35792dae3c1b50b3264

Download | Favorite | View

secunia-vlcplayer.txt

Posted Jul 10, 2008

Authored by Alin Rad Pop | Site secunia.com

Secunia Research has discovered a vulnerability in VLC Media Player versions 0.8.6h on Windows, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an integer overflow error within the "Open()" function in modules/demux/wav.c. This can be exploited to cause a heap-based buffer overflow via a specially crafted WAV file having an overly large "fmt" chunk.

tags | advisory, overflow

systems | windows

advisories | CVE-2008-2430

SHA-256 | e2f38b98275bda496b754a264185e18e366d990b4a6ce34468c89d7f4314050d

Download | Favorite | View