CVE-2008-3794
CVE-2008-3794
Integer signedness error in the mms_ReceiveCommand function in modules/access/mms/mmstu.c in VLC Media Player 0.8.6i allows remote attackers to execute arbitrary code via a crafted mmst link with a negative size value, which bypasses a size check and triggers an integer overflow followed by a heap-based buffer overflow.
Affected products
n/a · n/apublic PoCs found — 1
cve_referencewww.exploit-db.com/exploits/6293unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://mailman.videolan.org/pipermail/vlc-devel/2008-August/048488.htmlhttp://security.gentoo.org/glsa/glsa-200809-06.xmlhttp://securityreason.com/securityalert/4190https://exchange.xforce.ibmcloud.com/vulnerabilities/44659https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14531https://www.exploit-db.com/exploits/6293http://www.openwall.com/lists/oss-security/2008/08/24/3http://www.orange-bat.com/adv/2008/adv.08.24.txthttp://www.securityfocus.com/bid/30806http://www.securitytracker.com/id?1020759