Back to search
CVE-2008-3794
Published: Aug 26, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Integer signedness error in the mms_ReceiveCommand function in modules/access/mms/mmstu.c in VLC Media Player 0.8.6i allows remote attackers to execute arbitrary code via a crafted mmst link with a negative size value, which bypasses a size check and triggers an integer overflow followed by a heap-based buffer overflow.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://www.orange-bat.com/adv/2008/adv.08.24.txt
x_refsource_MISC
30806
vdb-entry
x_refsource_BID
oval:org.mitre.oval:def:14531
vdb-entry
signature
x_refsource_OVAL
[vlc-devel] 20080824 commit: MMS integers handling fixes, including buffer overflow ( Rémi Denis-Courmont )
mailing-list
x_refsource_MLIST
6293
exploit
x_refsource_EXPLOIT-DB
vlcmediaplayer-memmove-bo(44659)
vdb-entry
x_refsource_XF
1020759
vdb-entry
x_refsource_SECTRACK
4190
third-party-advisory
x_refsource_SREASON
[oss-security] 20080824 Re: CVE id request: vlc
mailing-list
x_refsource_MLIST
GLSA-200809-06
vendor-advisory
x_refsource_GENTOO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now