CVE-2015-5949

Published: Aug 25, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

VideoLAN VLC media player 2.2.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP file, which triggers the freeing of arbitrary pointers.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://git.videolan.org/?p=vlc/vlc-2.2.git%3Ba=commitdiff%3Bh=ce91452460a75d7424b165c4dc8db98114c3cbd9%3Bhp=9e12195d3e4316278af1fa4bcb6a705ff27456fd

x_refsource_CONFIRM

DSA-3342

vendor-advisory

x_refsource_DEBIAN

GLSA-201603-08

vendor-advisory

x_refsource_GENTOO

[oss-security] 20150820 Re: [oCERT-2015-009] VLC arbitrary pointer dereference

mailing-list

x_refsource_MLIST

20150820 [oCERT-2015-009] VLC arbitrary pointer dereference

mailing-list

x_refsource_BUGTRAQ

https://www.ocert.org/advisories/ocert-2015-009.html

x_refsource_MISC

openSUSE-SU-2016:0476

vendor-advisory

x_refsource_SUSE

[oss-security] 20150820 [oCERT-2015-009] VLC arbitrary pointer dereference

mailing-list

x_refsource_MLIST

http://packetstormsecurity.com/files/133266/VLC-2.2.1-Arbitrary-Pointer-Dereference.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2015-5949

Description

Affected Products

References