CVE-2010-3907
published 2011-01-03CVE-2010-3907: Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service…
PriorityP339critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
5.77%
92.2th percentile
Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a zero i_subpackets value in a Real Media file, leading to a heap-based buffer overflow.
Affected
72 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | vlc | < vlc 1.1.3-1squeeze1 (bookworm) | vlc 1.1.3-1squeeze1 (bookworm) |
| videolan | vlc_media_player | <= 1.1.5 | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
| videolan | vlc_media_player | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.3CRITICAL
vendor_debian9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-ww74-g265-xf82: Multiple integer overflows in real
ghsa_unreviewed·2022-05-17
CVE-2010-3907 [HIGH] GHSA-ww74-g265-xf82: Multiple integer overflows in real
Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a zero i_subpackets value in a Real Media file, leading to a heap-based buffer overflow.
OSV
CVE-2010-3907: Multiple integer overflows in real
osv·2011-01-03·CVSS 9.3
CVE-2010-3907 [CRITICAL] CVE-2010-3907: Multiple integer overflows in real
Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a zero i_subpackets value in a Real Media file, leading to a heap-based buffer overflow.
Debian
CVE-2010-3907: vlc - Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC ...
vendor_debian·2010·CVSS 9.3
CVE-2010-3907 [CRITICAL] CVE-2010-3907: vlc - Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC ...
Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a zero i_subpackets value in a Real Media file, leading to a heap-based buffer overflow.
Scope: local
bookworm: resolved (fixed in 1.1.3-1squeeze1)
bullseye: resolved (fixed in 1.1.3-1squeeze1)
forky: resolved (fixed in 1.1.3-1squeeze1)
sid: resolved (fixed in 1.1.3-1squeeze1)
trixie: resolved (fixed in 1.1.3-1squeeze1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://git.videolan.org/?p=vlc.git%3Ba=commit%3Bh=6568965770f906d34d4aef83237842a5376adb55http://www.cs.brown.edu/people/drosenbe/research.htmlhttp://www.securityfocus.com/bid/45632http://www.videolan.org/security/sa1007.htmlhttp://www.vupen.com/english/advisories/2010/3345https://exchange.xforce.ibmcloud.com/vulnerabilities/64461https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13950http://git.videolan.org/?p=vlc.git%3Ba=commit%3Bh=6568965770f906d34d4aef83237842a5376adb55http://www.cs.brown.edu/people/drosenbe/research.htmlhttp://www.securityfocus.com/bid/45632http://www.videolan.org/security/sa1007.htmlhttp://www.vupen.com/english/advisories/2010/3345https://exchange.xforce.ibmcloud.com/vulnerabilities/64461https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13950
2011-01-03
Published