Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2008-4654Improper Restriction of Operations within the Bounds of a Memory Buffer in VLC Media Player

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer8 documents6 sources
Severity
9.3CRITICALNVD
EPSS
82.1%
top 0.79%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Videolan VLC Media Player
Timeline
PublishedOct 22
Latest updateMay 14

Description

Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty.c) in VLC Media Player 0.9.0 through 0.9.4 allows remote attackers to execute arbitrary code via a TiVo TY media file with a header containing a crafted size value.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

Debianvideolan/vlc_media_player< 1.0.3-1+3
NVDvideolan/vlc_media_player5 versions+4

🔴Vulnerability Details

3
GHSA
GHSA-wrh9-pxv5-hf6w: Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty2022-05-14
OSV
CVE-2008-4654: Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty2008-10-22
CVEList
CVE-2008-4654: Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty2008-10-21

💥Exploits & PoCs

3
Exploit-DB
VideoLAN VLC Media Player 0.9.4 - TiVo Buffer Overflow (Metasploit)2011-02-02
Exploit-DB
VideoLAN VLC Media Player 0.9.4 - '.ty' Local Buffer Overflow (SEH)2008-10-23
Exploit-DB
VideoLAN VLC Media Player 0.9.4 - '.TY' Local Stack Buffer Overflow2008-10-21

📋Vendor Advisories

1
Debian
CVE-2008-4654: vlc - Stack-based buffer overflow in the parse_master function in the Ty demux plugin ...2008
CVE-2008-4654 — Videolan VLC Media Player vulnerability | cvebase