CVE-2008-0984
First published: Tue Feb 26 2008(Updated: )
The MP4 demuxer (mp4.c) for VLC media player 0.8.6d and earlier, as used in Miro Player 1.1 and earlier, allows remote attackers to overwrite arbitrary memory and execute arbitrary code via a malformed MP4 file.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Miro Miro Player | <=1.1 | |
| Videolan Vlc Media Player | <=0.8.6d |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.videolan.org/security/sa0802.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2008-February/060481.html
- http://www.coresecurity.com/?action=item&id=2147
- http://www.securityfocus.com/bid/28007
- http://www.securitytracker.com/id?1019510
- http://secunia.com/advisories/29122
- http://secunia.com/advisories/29153
- http://www.gentoo.org/security/en/glsa/glsa-200803-13.xml
- http://secunia.com/advisories/29284
- http://www.debian.org/security/2008/dsa-1543
- http://secunia.com/advisories/29766
- http://www.vupen.com/english/advisories/2008/0682
- http://www.securityfocus.com/archive/1/488841/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/remedy
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/miro
- canonical/miro miro player
- version/miro miro player/1.1
- vendor/videolan
- canonical/videolan vlc media player
- version/videolan vlc media player/0.8.6d