Lucene search
HistoryOct 25, 2013 - 11:55 p.m.
CVE-2013-6283
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
High
EPSS
0.128
Percentile
95.5%
VideoLAN VLC Media Player 2.0.8 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a URL in a m3u file.
Affected configurations
Node
videolanvlc_media_playerRange≤2.0.8
ORvideolanvlc_media_playerMatch1.0.0
ORvideolanvlc_media_playerMatch1.0.1
ORvideolanvlc_media_playerMatch1.0.2
ORvideolanvlc_media_playerMatch1.0.3
ORvideolanvlc_media_playerMatch1.0.4
ORvideolanvlc_media_playerMatch1.0.5
ORvideolanvlc_media_playerMatch1.0.6
ORvideolanvlc_media_playerMatch1.1.0
ORvideolanvlc_media_playerMatch1.1.1
ORvideolanvlc_media_playerMatch1.1.2
ORvideolanvlc_media_playerMatch1.1.3
ORvideolanvlc_media_playerMatch1.1.4
ORvideolanvlc_media_playerMatch1.1.4.1
ORvideolanvlc_media_playerMatch1.1.5
ORvideolanvlc_media_playerMatch1.1.6
ORvideolanvlc_media_playerMatch1.1.6.1
ORvideolanvlc_media_playerMatch1.1.7
ORvideolanvlc_media_playerMatch1.1.8
ORvideolanvlc_media_playerMatch1.1.9
ORvideolanvlc_media_playerMatch1.1.10
ORvideolanvlc_media_playerMatch1.1.10.1
ORvideolanvlc_media_playerMatch1.1.11
ORvideolanvlc_media_playerMatch1.1.12
ORvideolanvlc_media_playerMatch1.1.13
ORvideolanvlc_media_playerMatch2.0.0
ORvideolanvlc_media_playerMatch2.0.1
ORvideolanvlc_media_playerMatch2.0.2
ORvideolanvlc_media_playerMatch2.0.3
ORvideolanvlc_media_playerMatch2.0.4
ORvideolanvlc_media_playerMatch2.0.5
ORvideolanvlc_media_playerMatch2.0.6
ORvideolanvlc_media_playerMatch2.0.7
| Vendor | Product | Version | CPE |
|---|---|---|---|
| videolan | vlc_media_player | * | cpe:2.3:a:videolan:vlc_media_player:*:*:*:*:*:*:*:* |
| videolan | vlc_media_player | 1.0.0 | cpe:2.3:a:videolan:vlc_media_player:1.0.0:*:*:*:*:*:*:* |
| videolan | vlc_media_player | 1.0.1 | cpe:2.3:a:videolan:vlc_media_player:1.0.1:*:*:*:*:*:*:* |
| videolan | vlc_media_player | 1.0.2 | cpe:2.3:a:videolan:vlc_media_player:1.0.2:*:*:*:*:*:*:* |
| videolan | vlc_media_player | 1.0.3 | cpe:2.3:a:videolan:vlc_media_player:1.0.3:*:*:*:*:*:*:* |
| videolan | vlc_media_player | 1.0.4 | cpe:2.3:a:videolan:vlc_media_player:1.0.4:*:*:*:*:*:*:* |
| videolan | vlc_media_player | 1.0.5 | cpe:2.3:a:videolan:vlc_media_player:1.0.5:*:*:*:*:*:*:* |
| videolan | vlc_media_player | 1.0.6 | cpe:2.3:a:videolan:vlc_media_player:1.0.6:*:*:*:*:*:*:* |
| videolan | vlc_media_player | 1.1.0 | cpe:2.3:a:videolan:vlc_media_player:1.1.0:*:*:*:*:*:*:* |
| videolan | vlc_media_player | 1.1.1 | cpe:2.3:a:videolan:vlc_media_player:1.1.1:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2013-10-25 23:55:00
openvas
openvas
VLC Media Player M3U DoS Vulnerability - Linux
2013-11-05 00:00:00
VLC Media Player M3U DoS Vulnerability - Mac OS X
2013-11-05 00:00:00
VLC Media Player M3U DoS Vulnerability - Windows
2013-11-05 00:00:00
ubuntucve
ubuntucve
CVE-2013-6283
2013-10-25 00:00:00
cve
cve
CVE-2013-6283
2013-10-25 23:55:04
debiancve
debiancve
CVE-2013-6283
2013-10-25 23:55:04
exploitdb
exploitdb
VideoLAN VLC Media Player 2.0.8 - '.m3u' Local Crash (PoC)
2013-08-19 00:00:00
cvelist
cvelist
CVE-2013-6283
2013-10-25 23:00:00
nessus
nessus
VLC < 2.0.9 DoS
2020-06-03 00:00:00
GLSA-201411-01 : VLC: Multiple vulnerabilities
2014-11-06 00:00:00
gentoo
gentoo
VLC: Multiple vulnerabilities
2014-11-05 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
High
EPSS
0.128
Percentile
95.5%
Related for NVD:CVE-2013-6283