← Back

CVE-2008-1768

nvd nist
Published: Apr 25, 2008Modified: Apr 23, 2026

JSON object

Loading...
6.8
Vector
AV:N/AC:M/Au:N/C:P/I:P/A:P
Exploitability: 8.6 / Impact: 6.4
Source: NVD

Description

Multiple integer overflows in VLC before 0.8.6f allow remote attackers to cause a denial of service (crash) via the (1) MP4 demuxer, (2) Real demuxer, and (3) Cinepak codec, which triggers a buffer overflow.

Affected (60)

Products: Videolan: Vlc
Videolan
1 product
Vlc
Configuration A
60 vulnerable
Vulnerable SoftwareAffected Versions
Videolan
Vlc
Version 0.1.99
Vlc
Version 0.1.99a
Vlc
Version 0.1.99b
Vlc
Version 0.1.99c
Vlc
Version 0.1.99d
Vlc
Version 0.1.99e
Vlc
Version 0.1.99f
Vlc
Version 0.1.99g
Vlc
Version 0.1.99h
Vlc
Version 0.1.99i
Vlc
Version 0.2.0
Vlc
Version 0.2.50
Vlc
Version 0.2.60
Vlc
Version 0.2.61
Vlc
Version 0.2.62
Vlc
Version 0.2.63
Vlc
Version 0.2.70
Vlc
Version 0.2.71
Vlc
Version 0.2.72
Vlc
Version 0.2.73
Vlc
Version 0.2.80
Vlc
Version 0.2.81
Vlc
Version 0.2.82
Vlc
Version 0.2.83
Vlc
Version 0.2.90
Vlc
Version 0.2.91
Vlc
Version 0.2.92
Vlc
Version 0.3.0
Vlc
Version 0.3.1
Vlc
Version 0.4.0
Vlc
Version 0.4.1
Vlc
Version 0.4.2
Vlc
Version 0.4.3
Vlc
Version 0.4.3_ac3
Vlc
Version 0.4.4
Vlc
Version 0.4.5
Vlc
Version 0.4.6
Vlc
Version 0.5.0
Vlc
Version 0.5.1
Vlc
Version 0.5.2
Vlc
Version 0.5.3
Vlc
Version 0.6.0
Vlc
Version 0.6.1
Vlc
Version 0.6.2
Vlc
Version 0.7.0
Vlc
Version 0.7.1
Vlc
Version 0.7.2
Vlc
Version 0.8.0
Vlc
Version 0.8.1337
Vlc
Version 0.8.1
Vlc
Version 0.8.2
Vlc
Version 0.8.4
Vlc
Version 0.8.4a
Vlc
Version 0.8.5
Vlc
Version 0.8.6
Vlc
Version 0.8.6a
Vlc
Version 0.8.6b
Vlc
Version 0.8.6c
Vlc
Version 0.8.6d
Vlc
Version 0.8.6e

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (18)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.