Vulnerability Description
VLC media player 1.1.11 allows remote attackers to cause a denial of service (crash) via a long string in an amr file.
CVSS Score
4.3
MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Videolan | Vlc Media Player | 1.1.11 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/bugtraq/2012-01/0033.htmlExploit
- http://www.exploit-db.com/exploits/18309Exploit
- http://www.securityfocus.com/bid/51255Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72085
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://archives.neohapsis.com/archives/bugtraq/2012-01/0033.htmlExploit
- http://www.exploit-db.com/exploits/18309Exploit
- http://www.securityfocus.com/bid/51255Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72085
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2012-0904?
CVE-2012-0904 is a vulnerability with a CVSS score of 4.3 (MEDIUM). VLC media player 1.1.11 allows remote attackers to cause a denial of service (crash) via a long string in an amr file.
How severe is CVE-2012-0904?
CVE-2012-0904 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-0904?
Check the references section above for vendor advisories and patch information. Affected products include: Videolan Vlc Media Player.