CVE-2008-4558

Array index error in VLC media player 0.9.2 allows remote attackers to overwrite arbitrary memory and execute arbitrary code via an XSPF playlist file with a negative identifier tag, which passes a signed comparison.

Date published : 2008-10-14

http://www.securityfocus.com/bid/31758

http://www.securityfocus.com/archive/1/497354/100/0/threaded