CVE-2007-6683 in VLCinfo

Summary

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via (1) the :demuxdump-file option in a filename in a playlist, or (2) a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

01/16/2008

Disclosure

01/16/2008

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-134 (Confirmed)

CVSS

5.3

EPSS

0.00895

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-6683
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-6683
CVE Details	https://www.cvedetails.com/cve/CVE-2007-6683/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!