Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1768

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2008-1768
Last Modified 27 Jan 2012 12:31:32
Published 25 Apr 2008 02:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-1768

Summary

Multiple integer overflows in VLC before 0.8.6f allow remote attackers to cause a denial of service (crash) via the (1) MP4 demuxer, (2) Real demuxer, and (3) Cinepak codec, which triggers a buffer overflow.

Vulnerable Systems

Application

  • Videolan Vlc 0.1.99

  • Videolan Vlc 0.1.99a

  • Videolan Vlc 0.1.99b

  • Videolan Vlc 0.1.99c

  • Videolan Vlc 0.1.99d

  • Videolan Vlc 0.1.99e

  • Videolan Vlc 0.1.99f

  • Videolan Vlc 0.1.99g

  • Videolan Vlc 0.1.99h

  • Videolan Vlc 0.1.99i

  • Videolan Vlc 0.2.0

  • Videolan Vlc 0.2.50

  • Videolan Vlc 0.2.60

  • Videolan Vlc 0.2.61

  • Videolan Vlc 0.2.62

  • Videolan Vlc 0.2.63

  • Videolan Vlc 0.2.70

  • Videolan Vlc 0.2.71

  • Videolan Vlc 0.2.72

  • Videolan Vlc 0.2.73

  • Videolan Vlc 0.2.80

  • Videolan Vlc 0.2.81

  • Videolan Vlc 0.2.82

  • Videolan Vlc 0.2.83

  • Videolan Vlc 0.2.90

  • Videolan Vlc 0.2.91

  • Videolan Vlc 0.2.92

  • Videolan Vlc 0.3.0

  • Videolan Vlc 0.3.1

  • Videolan Vlc 0.4.0

  • Videolan Vlc 0.4.1

  • Videolan Vlc 0.4.2

  • Videolan Vlc 0.4.3

  • Videolan Vlc 0.4.3 Ac3

  • Videolan Vlc 0.4.4

  • Videolan Vlc 0.4.5

  • Videolan Vlc 0.4.6

  • Videolan Vlc 0.5.0

  • Videolan Vlc 0.5.1

  • Videolan Vlc 0.5.2

  • Videolan Vlc 0.5.3

  • Videolan Vlc 0.6.0

  • Videolan Vlc 0.6.1

  • Videolan Vlc 0.6.2

  • Videolan Vlc 0.7.0

  • Videolan Vlc 0.7.1

  • Videolan Vlc 0.7.2

  • Videolan Vlc 0.8.0

  • Videolan Vlc 0.8.1

  • Videolan Vlc 0.8.1337

  • Videolan Vlc 0.8.2

  • Videolan Vlc 0.8.4

  • Videolan Vlc 0.8.4a

  • Videolan Vlc 0.8.5

  • Videolan Vlc 0.8.6

  • Videolan Vlc 0.8.6a

  • Videolan Vlc 0.8.6b

  • Videolan Vlc 0.8.6c

  • Videolan Vlc 0.8.6d

  • Videolan Vlc 0.8.6e


References

VUPEN - ADV-2008-0985

GENTOO - GLSA-200804-25

SECUNIA - 29503

CONFIRM - http://www.videolan.org/security/sa0803.php

CONFIRM - http://www.videolan.org/developers/vlc/NEWS

BID - 28903

CONFIRM - http://wiki.videolan.org/Changelog/0.8.6f

SECUNIA - 29800


Last Updated: 27 May 2016 10:47:38