Back to search
CVE-2011-0531
Published: Feb 7, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC media player 1.1.6.1 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary commands via a crafted MKV (WebM or Matroska) file that triggers memory corruption, related to "class mismatching" and the MKV_IS_ID macro.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
70698
vdb-entry
x_refsource_OSVDB
ADV-2011-0363
vdb-entry
x_refsource_VUPEN
43242
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:12415
vdb-entry
signature
x_refsource_OVAL
DSA-2159
vendor-advisory
x_refsource_DEBIAN
http://www.videolan.org/security/sa1102.html
x_refsource_CONFIRM
vlc-mkv-code-execution(65045)
vdb-entry
x_refsource_XF
43131
third-party-advisory
x_refsource_SECUNIA
[oss-security] 20110131 CVE request: code execution in VLC media player
mailing-list
x_refsource_MLIST
1025018
vdb-entry
x_refsource_SECTRACK
46060
vdb-entry
x_refsource_BID
[oss-security] 20110131 Re: CVE request: code execution in VLC media player
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now