CVE-2008-4558 in VLC Media Playerinfo

Summary

Array index error in VLC media player 0.9.2 allows remote attackers to overwrite arbitrary memory and execute arbitrary code via an XSPF playlist file with a negative identifier tag, which passes a signed comparison.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

10/14/2008

Disclosure

10/14/2008

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
3854	VideoLAN VLC Media Player XSPF File resource management	399	Proof-of-Concept	Official fix	CVE-2008-4558

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!