← back
CVE-2011-2194

CVE-2011-2194

EPSS 9.2%
Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/17372unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/44892https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14774http://www.debian.org/security/2011/dsa-2257http://www.securityfocus.com/bid/48171http://www.videolan.org/security/sa1104.html