| Revision Date: | 2012-11-19 | Version: | 7 |
| Title: | Heap-based buffer overflow in the MP4_ReadBox_skcr function in libmp4.c in the MP4 demultiplexer in VideoLAN VLC media player |
| Description: | Heap-based buffer overflow in the MP4_ReadBox_skcr function in libmp4.c in the MP4 demultiplexer in VideoLAN VLC media player 1.x before 1.1.9 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted MP4 file. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2011-1684
|
| Platform(s): | Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | VLC Media Player
|
| Definition Synopsis |
| VLC media player is installed AND Version of VLC Media Player greater than or equal to 1.0.0 and less than or equal to 1.1.8
AND File libmp4_plugin.dll exists in plugin directory
|