1. CVE-Search
  2. CVE-2010-2062
ID CVE-2010-2062
Summary Integer underflow in the real_get_rdt_chunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, allows remote attackers to execute arbitrary code via a crafted length value in an RDT chunk header.
References
Vulnerable Configurations
  • cpe:2.3:a:videolan:vlc_media_player:0.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.5.2:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.5.3:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.5.3:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.7.2:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.7.2:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.0:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.1:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.2:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.2:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.4:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.4:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.4a:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.4a:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.5:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.5:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.6:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.6:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.6a:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.6a:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.6b:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.6b:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.6c:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.6c:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.6d:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.6d:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.6e:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.6e:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.6f:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.6f:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.6g:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.6g:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.6h:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.6h:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.6i:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.6i:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.8.1337:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.8.1337:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.9.3:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.9.3:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.9.4:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.9.4:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.9.5:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.9.5:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.9.6:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.9.6:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.9.8a:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.9.8a:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.9.9:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.9.9:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.9.9a:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.9.9a:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.9.10:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.9.10:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:-:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:-:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.1.99a:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.1.99a:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.1.99b:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.1.99b:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.1.99c:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.1.99c:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.1.99d:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.1.99d:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.1.99e:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.1.99e:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.1.99f:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.1.99f:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.1.99g:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.1.99g:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.1.99h:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.1.99h:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.1.99i:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.1.99i:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.50:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.50:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.60:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.60:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.61:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.61:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.62:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.62:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.63:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.63:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.70:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.70:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.71:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.71:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.72:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.72:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.73:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.73:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.80:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.80:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.81:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.81:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.82:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.82:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.83:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.83:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.90:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.90:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.91:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.91:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.2.92:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.2.92:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.4.3-ac3:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.4.3-ac3:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.4.6:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:0.5.1a:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:0.5.1a:*:*:*:*:*:*:*
  • cpe:2.3:a:videolan:vlc_media_player:1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:videolan:vlc_media_player:1.0.0:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 29-12-2014 - 21:03)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
confirm http://git.videolan.org/?p=vlc.git;a=commit;h=dc74600c97eb834c08674676e209afa842053aca
fulldisc 20090727 [DZC-2009-001] The Movie Player and VLC Media Player Real Data Transport parsing integer underflow.
misc https://dzcore.wordpress.com/2009/07/27/dzc-2009-001-the-movie-player-and-vlc-media-player-real-data-transport-parsing-integer-underflow/
mlist [oss-security] 20100604 Re: CVE requests for mplayer/vlc and abcm2ps
Last major update 29-12-2014 - 21:03
Published 26-12-2014 - 20:59
Last modified 29-12-2014 - 21:03
Back to Top