Lucene search
Veracode Vulnerability DatabaseVERACODE:27176HistorySep 21, 2020 - 6:40 a.m.
Arbitrary Code Execution
2020-09-2106:40:02
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
EPSS
0.003
Percentile
70.9%
vlc is vulnerable to arbitrary code execution. A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c, resulting in a floating point exception via and allows an attacker to execute arbitrary code via a malicious WMV file.
References
git.videolan.org/?p=vlc.git&a=search&h=refs/heads/master&st=commit&s=cve-2019
lists.opensuse.org/opensuse-security-announce/2020-04/msg00036.html
lists.opensuse.org/opensuse-security-announce/2020-04/msg00046.html
seclists.org/bugtraq/2019/Aug/36
security.gentoo.org/glsa/201909-02
usn.ubuntu.com/4131-1/
www.debian.org/security/2019/dsa-4504
www.videolan.org/security/sb-vlc308.html
Related
prion
prion
Input validation
2019-08-29 18:15:00
nvd
nvd
CVE-2019-14535
2019-08-29 18:15:12
alpinelinux
alpinelinux
CVE-2019-14535
2019-08-29 18:15:12
osv
osv
CVE-2019-14535
2019-08-29 18:15:12
vlc - security update
2019-08-20 00:00:00
cvelist
cvelist
CVE-2019-14535
2019-08-29 17:38:30
ubuntucve
ubuntucve
CVE-2019-14535
2019-08-29 00:00:00
debiancve
debiancve
CVE-2019-14535
2019-08-29 18:15:12
cve
cve
CVE-2019-14535
2019-08-29 18:15:12
openvas
openvas
VLC Media Player Multiple Vulnerabilities (sb-vlc308) - Mac OS X
2019-08-20 00:00:00
Debian: Security Advisory (DSA-4504-1)
2019-08-22 00:00:00
VLC Media Player Multiple Vulnerabilities (sb-vlc308) - Windows
2019-08-20 00:00:00
gentoo
gentoo
VLC: Multiple vulnerabilities
2019-09-06 00:00:00
suse
suse
Security update for vlc (moderate)
2020-04-29 00:00:00
Security update for vlc (moderate)
2020-04-23 00:00:00
nessus
nessus
GLSA-201909-02 : VLC: Multiple vulnerabilities
2019-09-09 00:00:00
VLC < 3.0.8 Multiple Vulnerabilities
2019-08-23 00:00:00
ubuntu
ubuntu
VLC vulnerabilities
2019-09-11 00:00:00
kaspersky
kaspersky
KLA11761 Multiple vulnerabilities in VLC media player
2019-08-29 00:00:00
debian
debian
[SECURITY] [DSA 4504-1] vlc security update
2019-08-20 22:04:33
freebsd
freebsd
vlc -- multiple vulnerabilities
2019-07-14 00:00:00
mageia
mageia
Updated vlc packages fixes security vulnerabilities
2019-08-31 16:22:36