Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-1684

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2014-1684
Last Modified 07 Mar 2014 03:35:15
Published 03 Mar 2014 11:55:04
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-1684

Summary

The ASF_ReadObject_file_properties function in modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media Player before 2.1.3 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a zero minimum and maximum data packet size in an ASF file.

Vulnerable Systems

Application

  • Videolan Vlc Media Player 1.0.0

  • Videolan Vlc Media Player 1.0.1

  • Videolan Vlc Media Player 1.0.2

  • Videolan Vlc Media Player 1.0.3

  • Videolan Vlc Media Player 1.0.4

  • Videolan Vlc Media Player 1.0.5

  • Videolan Vlc Media Player 1.0.6

  • Videolan Vlc Media Player 1.1.0

  • Videolan Vlc Media Player 1.1.1

  • Videolan Vlc Media Player 1.1.10

  • Videolan Vlc Media Player 1.1.10.1

  • Videolan Vlc Media Player 1.1.11

  • Videolan Vlc Media Player 1.1.12

  • Videolan Vlc Media Player 1.1.13

  • Videolan Vlc Media Player 1.1.2

  • Videolan Vlc Media Player 1.1.3

  • Videolan Vlc Media Player 1.1.4

  • Videolan Vlc Media Player 1.1.4.1

  • Videolan Vlc Media Player 1.1.5

  • Videolan Vlc Media Player 1.1.6

  • Videolan Vlc Media Player 1.1.6.1

  • Videolan Vlc Media Player 1.1.7

  • Videolan Vlc Media Player 1.1.8

  • Videolan Vlc Media Player 1.1.9

  • Videolan Vlc Media Player 2.0.0

  • Videolan Vlc Media Player 2.0.1

  • Videolan Vlc Media Player 2.0.2

  • Videolan Vlc Media Player 2.0.3

  • Videolan Vlc Media Player 2.0.4

  • Videolan Vlc Media Player 2.0.5

  • Videolan Vlc Media Player 2.0.6

  • Videolan Vlc Media Player 2.0.7

  • Videolan Vlc Media Player 2.0.8

  • Videolan Vlc Media Player 2.0.9

  • Videolan Vlc Media Player 2.1.0

  • Videolan Vlc Media Player 2.1.1

  • Videolan Vlc Media Player 2.1.2


References

CONFIRM - https://trac.videolan.org/vlc/ticket/10482

MISC - http://www.elsherei.com/?p=269

CONFIRM - http://git.videolan.org/gitweb.cgi/vlc.git/?p=vlc.git;a=commitdiff;h=98787d0843612271e99d62bee0dfd8197f0cf404


Last Updated: 27 May 2016 11:04:32