Videolan

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-1776 1Videolan 1Vlc Media Player Apr 29, 2026 Mar 19, 2012 N/A· v4 N/A· v3 9.3 HIGH· v2 Multiple heap-based buffer overflows in VideoLAN VLC media player before 2.0.1 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Real RTSP stream.
CVE-2012-1775 1Videolan 1Vlc Media Player Apr 29, 2026 Mar 19, 2012 N/A· v4 N/A· v3 9.3 HIGH· v2 Stack-based buffer overflow in VideoLAN VLC media player before 2.0.1 allows remote attackers to execute arbitrary code via a crafted MMS:// stream.
CVE-2012-0904 1Videolan 1Vlc Media Player Apr 29, 2026 Jan 20, 2012 N/A· v4 N/A· v3 4.3 MEDIUM· v2 VLC media player 1.1.11 allows remote attackers to cause a denial of service (crash) via a long string in an amr file.
CVE-2011-2588 1Videolan 1Vlc Media Player Apr 29, 2026 Jul 27, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Heap-based buffer overflow in the AVI_ChunkRead_strf function in libavi.c in the AVI demuxer in VideoLAN VLC media player before 1.1.11 allows remote attackers to cause a denial of service (application crash) or possibly...Show more Heap-based buffer overflow in the AVI_ChunkRead_strf function in libavi.c in the AVI demuxer in VideoLAN VLC media player before 1.1.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted AVI media file.Show less
CVE-2011-2587 1Videolan 1Vlc Media Player Apr 29, 2026 Jul 27, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Heap-based buffer overflow in the DemuxAudioSipr function in real.c in the RealMedia demuxer in VideoLAN VLC media player 1.1.x before 1.1.11 allows remote attackers to cause a denial of service (application crash) or po...Show more Heap-based buffer overflow in the DemuxAudioSipr function in real.c in the RealMedia demuxer in VideoLAN VLC media player 1.1.x before 1.1.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Real Media file.Show less
CVE-2011-1931 3Ffmpeg LibavVideolan 3Ffmpeg LibavVlc Media Player Apr 29, 2026 Jul 7, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the b...Show more sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of an unspecified array, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a malformed AMV file.Show less
CVE-2011-2194 1Videolan 1Vlc Media Player Apr 29, 2026 Jun 24, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that...Show more Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow.Show less
CVE-2011-1684 1Videolan 1Vlc Media Player Apr 29, 2026 May 3, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Heap-based buffer overflow in the MP4_ReadBox_skcr function in libmp4.c in the MP4 demultiplexer in VideoLAN VLC media player 1.x before 1.1.9 allows remote attackers to cause a denial of service (application crash) or p...Show more Heap-based buffer overflow in the MP4_ReadBox_skcr function in libmp4.c in the MP4 demultiplexer in VideoLAN VLC media player 1.x before 1.1.9 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted MP4 file.Show less
CVE-2011-1087 1Videolan 1Vlc Media Player Apr 29, 2026 May 3, 2011 N/A· v4 N/A· v3 7.6 HIGH· v2 Buffer overflow in VideoLAN VLC media player 1.0.5 allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .mp3 file t...Show more Buffer overflow in VideoLAN VLC media player 1.0.5 allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .mp3 file that is played during bookmark creation.Show less
CVE-2010-3276 1Videolan 1Vlc Media Player Apr 29, 2026 Mar 28, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an NSV file.
CVE-2010-3275 1Videolan 1Vlc Media Player Apr 29, 2026 Mar 28, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability."
CVE-2011-0531 1Videolan 1Vlc Media Player Apr 29, 2026 Feb 7, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary commands via a crafted MKV (WebM or Matroska...Show more demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary commands via a crafted MKV (WebM or Matroska) file that triggers memory corruption, related to "class mismatching" and the MKV_IS_ID macro.Show less
CVE-2011-0522 1Videolan 1Vlc Media Player Apr 29, 2026 Feb 7, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The StripTags function in (1) the USF decoder (modules/codec/subtitles/subsdec.c) and (2) the Text decoder (modules/codec/subtitles/subsusf.c) in VideoLAN VLC Media Player 1.1 before 1.1.6-rc allows remote attackers to e...Show more The StripTags function in (1) the USF decoder (modules/codec/subtitles/subsdec.c) and (2) the Text decoder (modules/codec/subtitles/subsusf.c) in VideoLAN VLC Media Player 1.1 before 1.1.6-rc allows remote attackers to execute arbitrary code via a subtitle with an opening "<" without a closing ">" in an MKV file, which triggers heap memory corruption, as demonstrated using refined-australia-blu720p-sample.mkv.Show less
CVE-2011-0021 1Videolan 1Vlc Media Player Apr 29, 2026 Jan 25, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 Multiple heap-based buffer overflows in cdg.c in the CDG decoder in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a...Show more Multiple heap-based buffer overflows in cdg.c in the CDG decoder in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted CDG video.Show less
CVE-2010-3907 1Videolan 1Vlc Media Player Apr 29, 2026 Jan 3, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a z...Show more Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a zero i_subpackets value in a Real Media file, leading to a heap-based buffer overflow.Show less
CVE-2010-3124 1Videolan 1Vlc Media Player Apr 29, 2026 Aug 26, 2010 N/A· v4 N/A· v3 9.3 HIGH· v2 Untrusted search path vulnerability in bin/winvlc.c in VLC Media Player 1.1.3 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse...Show more Untrusted search path vulnerability in bin/winvlc.c in VLC Media Player 1.1.3 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wintab32.dll that is located in the same folder as a .mp3 file.Show less
CVE-2010-2937 1Videolan 1Vlc Media Player Apr 29, 2026 Aug 20, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The ReadMetaFromId3v2 function in taglib.cpp in the TagLib plugin in VideoLAN VLC media player 0.9.0 through 1.1.2 does not properly process ID3v2 tags, which allows remote attackers to cause a denial of service (applica...Show more The ReadMetaFromId3v2 function in taglib.cpp in the TagLib plugin in VideoLAN VLC media player 0.9.0 through 1.1.2 does not properly process ID3v2 tags, which allows remote attackers to cause a denial of service (application crash) via a crafted media file.Show less
CVE-2010-0364 1Videolan 1Vlc Media Player Apr 29, 2026 Jan 21, 2010 N/A· v4 N/A· v3 9.3 HIGH· v2 Stack-based buffer overflow in VideoLAN VLC Media Player 0.8.6 allows user-assisted remote attackers to execute arbitrary code via an ogg file with a crafted Advanced SubStation Alpha Subtitle (.ass) file, probably invol...Show more Stack-based buffer overflow in VideoLAN VLC Media Player 0.8.6 allows user-assisted remote attackers to execute arbitrary code via an ogg file with a crafted Advanced SubStation Alpha Subtitle (.ass) file, probably involving the Dialogue field.Show less
CVE-2009-2484 1Videolan 1Vlc Media Player Apr 23, 2026 Jul 16, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Stack-based buffer overflow in the Win32AddConnection function in modules/access/smb.c in VideoLAN VLC media player 0.9.9, when running on Microsoft Windows, allows remote attackers to cause a denial of service (applicat...Show more Stack-based buffer overflow in the Win32AddConnection function in modules/access/smb.c in VideoLAN VLC media player 0.9.9, when running on Microsoft Windows, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long smb URI in a playlist file.Show less
CVE-2009-1045 1Videolan 1Vlc Media Player Apr 23, 2026 Mar 23, 2009 N/A· v4 N/A· v3 5.0 MEDIUM· v2 requests/status.xml in VLC 0.9.8a allows remote attackers to cause a denial of service (stack consumption and crash) via a long input argument in an in_play action.

Previous 1 2 3 456 7 Next