CVE-2008-3794

2008-08-26 17:41:00 2017-09-29 03:31:51

Integer signedness error in the mms_ReceiveCommand function in modules/access/mms/mmstu.c in VLC Media Player 0.8.6i allows remote attackers to execute arbitrary code via a crafted mmst link with a negative size value, which bypasses a size check and triggers an integer overflow followed by a heap-based buffer overflow.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

VideoLAN VLC Media Player 0.8.6i

Videolan - Vlc media player

Advisory	Patch	Confirmed	Link
			1020759
			30806
			http://www.orange-bat.com/adv/2008/adv.08.24.txt
			[oss-security] 20080824 Re: CVE id request: vlc
			4190
			GLSA-200809-06
			[vlc-devel] 20080824 commit: MMS integers handling fixes...
			6293
			vlcmediaplayer-memmove-bo(44659)

CVE-2008-3794

2008-08-26 17:41:00 2017-09-29 03:31:51

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)