Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2008-1881Improper Restriction of Operations within the Bounds of a Memory Buffer in VLC

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents6 sources
Severity
6.8MEDIUMNVD
CNA7.5OSV7.5
EPSS
54.0%
top 1.98%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Videolan VLC Media PlayerVideolan VLC
Timeline
PublishedApr 17
Latest updateMay 1

Description

Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle.c) in VLC 0.8.6e allows remote attackers to execute arbitrary code via a long subtitle in an SSA file. NOTE: this issue is due to an incomplete fix for CVE-2007-6681.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages2 packages

Debianvideolan/vlc_media_player< 0.8.6.e-2.1+3
NVDvideolan/vlc0.8.6e

🔴Vulnerability Details

3
GHSA
GHSA-7fxm-mjcc-cj9m: Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle2022-05-01
CVEList
CVE-2008-1881: Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle2008-04-17
OSV
CVE-2008-1881: Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle2008-04-17

💥Exploits & PoCs

2
Exploit-DB
VideoLAN VLC Media Player 0.8.6d SSA Parsing Double Sh311 - Universal2008-05-23
Exploit-DB
VideoLAN VLC Media Player 0.8.6e - Subtitle Parsing Local Buffer Overflow2008-03-14

📋Vendor Advisories

1
Debian
CVE-2008-1881: vlc - Stack-based buffer overflow in the ParseSSA function (modules/demux/subtitle.c) ...2008
CVE-2008-1881 — Videolan VLC vulnerability | cvebase