First published: Tue Aug 26 2008(Updated: )
Integer signedness error in the mms_ReceiveCommand function in modules/access/mms/mmstu.c in VLC Media Player 0.8.6i allows remote attackers to execute arbitrary code via a crafted mmst link with a negative size value, which bypasses a size check and triggers an integer overflow followed by a heap-based buffer overflow.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
VideoLAN VLC media player | =0.8.6i |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2008-3794 is considered critical due to the potential for remote code execution.
To fix CVE-2008-3794, update VLC Media Player to a version later than 0.8.6i.
VLC Media Player version 0.8.6i is vulnerable to CVE-2008-3794.
CVE-2008-3794 exploits an integer signedness error that allows attackers to execute arbitrary code via a crafted mmst link.
Yes, CVE-2008-3794 can be exploited remotely by using a malicious mmst link.