Vulnerabilities

CVE-2008-1489

by Fred · 24/03/2008

Integer overflow in the MP4_ReadBox_rdrf function in libmp4.c for VLC 0.8.6e allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MP4 RDRF box that triggers a heap-based buffer overflow, a different vulnerability than CVE-2008-0984.

Date published : 2008-03-24

http://www.securityfocus.com/bid/28433

http://trac.videolan.org/vlc/changeset/09572892df7e72c0d4e598c0b5e076cf330d8b0a

Similar

Tags: Cybersecurity Alert