QwikSec

Security Database

CVE

CWE

Training

CVE-2012-0023

Published: Oct 30, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Double free vulnerability in the get_chunk_header function in modules/demux/ty.c in VideoLAN VLC media player 0.9.0 through 1.1.12 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TiVo (TY) file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20121029 VideoLAN TiVo Demuxer Duplicate CVEs (CVE-2011-5231 and CVE-2012-0023)

mailing-list

x_refsource_MLIST

vlcmediaplayer-getchunkheader-code-exec(71916)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_OSVDB

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20121030 RE: VideoLAN TiVo Demuxer Duplicate CVEs (CVE-2011-5231 and CVE-2012-0023)

mailing-list

x_refsource_MLIST

http://www.videolan.org/security/sa1108.html

x_refsource_CONFIRM

oval:org.mitre.oval:def:15893

vdb-entry

signature

x_refsource_OVAL

vdb-entry

x_refsource_SECTRACK

http://git.videolan.org/?p=vlc.git%3Ba=commit%3Bh=7d282fac1cc455b5a5eca2bb56375efcbf879b06

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.