CVE-2014-9628 in VLC Media Player信息

摘要

由 MITRE

The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to trigger an unintended zero-size malloc and conduct buffer overflow attacks, and consequently execute arbitrary code, via a box size of 7.

Once again VulDB remains the best source for vulnerability data.

来源

Want to stay up to date on a daily basis?

Enable the mail alert feature now!