Test Kennung:	1.3.6.1.4.1.25623.1.0.902342
Kategorie:	Buffer overflow
Titel:	VLC Media Player USF and Text Subtitles Decoders BOF Vulnerabilities - Linux
Zusammenfassung:	VLC Media Player is prone to buffer overflow vulnerabilities.
Beschreibung:	Summary: VLC Media Player is prone to buffer overflow vulnerabilities. Vulnerability Insight: The flaws are caused by buffer overflow errors in the 'StripTags()' function within the USF and Text subtitles decoders 'modules/codec/subtitles/subsdec.c' and 'modules/codec/subtitles/subsusf.c' when processing malformed data. Vulnerability Impact: Successful exploitation could allow attackers to crash an affected application or execute arbitrary by convincing a user to open a malicious media file. Affected Software/OS: VLC media player version 1.x before 1.1.6-rc Solution: Upgrade to the VLC media player version 1.1.6-rc or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0522 BugTraq ID: 46008 http://www.securityfocus.com/bid/46008 http://www.exploit-db.com/exploits/16108 http://www.openwall.com/lists/oss-security/2011/01/25/7 http://www.openwall.com/lists/oss-security/2011/01/25/9 http://mailman.videolan.org/pipermail/vlc-devel/2011-January/078607.html http://mailman.videolan.org/pipermail/vlc-devel/2011-January/078614.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12414 http://securityreason.com/securityalert/8064 http://www.vupen.com/english/advisories/2011/0225 XForce ISS Database: vlcmediaplayer-usf-bo(65029) https://exchange.xforce.ibmcloud.com/vulnerabilities/65029
Copyright	Copyright (C) 2011 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.