Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2012 Greenbone AGOPENVAS:1361412562310802723
HistoryMar 21, 2012 - 12:00 a.m.

VLC Media Player Multiple Vulnerabilities (Mar 2012) - Linux

2012-03-2100:00:00
Copyright (C) 2012 Greenbone AG
plugins.openvas.org
15

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0.965

Percentile

99.6%

JSON

VLC Media Player is prone to multiple vulnerabilities.

# SPDX-FileCopyrightText: 2012 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.802723");
  script_version("2024-02-08T05:05:59+0000");
  script_cve_id("CVE-2012-1775", "CVE-2012-1776");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2024-02-08 05:05:59 +0000 (Thu, 08 Feb 2024)");
  script_tag(name:"creation_date", value:"2012-03-21 11:52:20 +0530 (Wed, 21 Mar 2012)");
  script_name("VLC Media Player Multiple Vulnerabilities (Mar 2012) - Linux");
  script_xref(name:"URL", value:"http://www.videolan.org/security/sa1201.html");
  script_xref(name:"URL", value:"http://www.videolan.org/security/sa1202.html");

  script_copyright("Copyright (C) 2012 Greenbone AG");
  script_category(ACT_GATHER_INFO);
  script_family("General");
  script_dependencies("secpod_vlc_media_player_detect_lin.nasl");
  script_mandatory_keys("VLCPlayer/Lin/Ver");
  script_tag(name:"impact", value:"Successful exploitation could allow attackers to cause a denial of service or
  possibly execute arbitrary code via crafted streams.");
  script_tag(name:"affected", value:"VLC media player version prior to 2.0.1 on Linux");
  script_tag(name:"insight", value:"The flaws are due to multiple buffer overflow errors in the
  application, which allows remote attackers to execute arbitrary code via
  crafted MMS:// stream and Real RTSP streams.");
  script_tag(name:"solution", value:"Upgrade to VLC media player version 2.0.1 or later.");
  script_tag(name:"summary", value:"VLC Media Player is prone to multiple vulnerabilities.");
  script_tag(name:"qod_type", value:"executable_version_unreliable");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}

include("version_func.inc");

vlcVer = get_kb_item("VLCPlayer/Lin/Ver");
if(!vlcVer){
  exit(0);
}

if(version_is_less(version:vlcVer, test_version:"2.0.1")){
  report = report_fixed_ver(installed_version:vlcVer, fixed_version:"2.0.1");
  security_message(port:0, data:report);
}

Related

openvas 8
nessus 5
freebsd 1
seebug 1
ubuntucve 2
saint 4
nvd 2
checkpoint_advisories 2
debiancve 2
packetstorm 1
metasploit 1
cve 2
prion 2
cvelist 2
exploitdb 1
gentoo 1
openvas
openvas
VLC Media Player Multiple Vulnerabilities - Mar 12 (Windows)
2012-03-21 00:00:00
FreeBSD Ports: vlc
2012-09-15 00:00:00
VLC Media Player Multiple Vulnerabilities - Mar 12 (MAC OS X)
2012-03-21 00:00:00
nessus
nessus
VLC Media Player < 2.0.1 Multiple RCE
2012-03-21 00:00:00
VLC Media Player < 2.0.1 Multiple Vulnerabilities
2012-03-21 00:00:00
VLC Media Player < 2.0.1 Multiple Code Execution Vulnerabilities
2012-03-21 00:00:00
freebsd
freebsd
vlc -- arbitrary code execution in Real RTSP and MMS support
2012-03-12 00:00:00
seebug
seebug
VLC Media Player MMSζ΅ζ ˆηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2012-05-09 00:00:00
ubuntucve
ubuntucve
CVE-2012-1775
2012-03-19 00:00:00
CVE-2012-1776
2012-03-19 00:00:00
saint
saint
VideoLAN VLC Media Player MMS URI Stack Overflow
2012-05-09 00:00:00
VideoLAN VLC Media Player MMS URI Stack Overflow
2012-05-09 00:00:00
VideoLAN VLC Media Player MMS URI Stack Overflow
2012-05-09 00:00:00
nvd
nvd
CVE-2012-1775
2012-03-19 16:55:01
CVE-2012-1776
2012-03-19 16:55:01
checkpoint_advisories
checkpoint_advisories
VideoLAN VLC Media Player MMS Plugin Stack Buffer Overflow - ver 2 (CVE-2012-1775)
2014-04-10 00:00:00
VideoLAN VLC Media Player MMS Plugin Stack Buffer Overflow (CVE-2012-1775)
2012-07-30 00:00:00
debiancve
debiancve
CVE-2012-1775
2012-03-19 16:55:01
CVE-2012-1776
2012-03-19 16:55:01
packetstorm
packetstorm
VLC MMS Stream Handling Buffer Overflow
2012-05-03 00:00:00
metasploit
metasploit
VLC MMS Stream Handling Buffer Overflow
2012-05-01 14:39:30
cve
cve
CVE-2012-1775
2012-03-19 16:55:01
CVE-2012-1776
2012-03-19 16:55:01
prion
prion
Stack overflow
2012-03-19 16:55:00
Heap overflow
2012-03-19 16:55:00
cvelist
cvelist
CVE-2012-1775
2012-03-19 16:00:00
CVE-2012-1776
2012-03-19 16:00:00
exploitdb
exploitdb
VideoLAN VLC Media Player 2.0.0 - Mms Stream Handling Buffer Overflow (Metasploit)
2012-05-03 00:00:00
gentoo
gentoo
VLC: Multiple vulnerabilities
2014-11-05 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0.965

Percentile

99.6%

JSON
Related for OPENVAS:1361412562310802723
openvas8nessus5freebsd1seebug1ubuntucve2saint4nvd2checkpoint_advisories2debiancve2packetstorm1metasploit1cve2prion2cvelist2exploitdb1gentoo1