CVE-2013-1954

Published: Jul 10, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

The ASF Demuxer (modules/demux/asf/asf.c) in VideoLAN VLC media player 2.0.5 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted ASF movie that triggers an out-of-bounds read.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20130414 CVE Request: VLC Buffer Overflow in ASF Demuxer

mailing-list

x_refsource_MLIST

59793

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20130416 Re: CVE Request: VLC Buffer Overflow in ASF Demuxer

mailing-list

x_refsource_MLIST

http://trac.videolan.org/vlc/ticket/8024

x_refsource_CONFIRM

57333

vdb-entry

x_refsource_BID

http://git.videolan.org/?p=vlc.git%3Ba=commitdiff%3Bh=b31ce523331aa3a6e620b68cdfe3f161d519631e

x_refsource_CONFIRM

89598

vdb-entry

x_refsource_OSVDB

oval:org.mitre.oval:def:17023

vdb-entry

signature

x_refsource_OVAL

http://www.videolan.org/security/sa1302.html

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-1954

Description

Affected Products

References