CVE

Id
53266  
CVE No.
CVE-2012-0023  
Status
Candidate  
Description
Double free vulnerability in the get_chunk_header function in modules/demux/ty.c in VideoLAN VLC media player 0.9.0 through 1.1.12 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TiVo (TY) file.  
Phase
Assigned (20111207)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
562852 53266 CVE-2012-0023 CONFIRM:http://git.videolan.org/?p=vlc.git;a=commit;h=7d282fac1cc455b5a5eca2bb56375efcbf879b06  View
562853 53266 CVE-2012-0023 CONFIRM:http://www.videolan.org/security/sa1108.html  View
562854 53266 CVE-2012-0023 BID:51231  View
562855 53266 CVE-2012-0023 URL:http://www.securityfocus.com/bid/51231  View
562856 53266 CVE-2012-0023 OSVDB:77975  View
562857 53266 CVE-2012-0023 URL:http://www.osvdb.org/77975  View
562858 53266 CVE-2012-0023 OVAL:oval:org.mitre.oval:def:15893  View
562859 53266 CVE-2012-0023 URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15893  View
562860 53266 CVE-2012-0023 SECTRACK:1026449  View
562861 53266 CVE-2012-0023 URL:http://securitytracker.com/id?1026449  View
562862 53266 CVE-2012-0023 SECUNIA:47325  View
562863 53266 CVE-2012-0023 URL:http://secunia.com/advisories/47325  View
562864 53266 CVE-2012-0023 XF:vlcmediaplayer-getchunkheader-code-exec(71916)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
27131 JVNDB-2012-002838 Linux Kernel の robust futex の実装におけるサービス運用妨害 (DoS) の脆弱性 Linux Kernel の robust futex の実装は、exec システムコールを行うプロセスを適切に処理しないため、サービス運用妨害 (DoS) 状態となる、または権限を取得される脆弱性が存在します。 CVE-2012-0028 53266 7.2 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002838.html  View