Snippets Groups Projects

udp:// format string vulnerability

The Month of Apple Bugs reported [http://applefun.blogspot.com/2007/01/moab-02-01-2007-vlc-media-player-udp.html MOAB #2 (closed)] today, which is a format string vulnerability in the udp:// protocol. More details on the exploit here:

http://projects.info-pull.com/moab/MOAB-02-01-2007.html

Apparently only tested on Mac OS X 10.4.8 and Windows (XP?).

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information

Child items 0

No child items are currently assigned. Use child items to break down this issue into smaller parts.

Activity

dionoea @dionoea · 18 years ago

This was reported to our mailing list and fixed yesterday [18481].

A possible workarroud is to delete the vcdx and ccda plugins.
dionoea added Status::invalid label 18 years ago

added Status::invalid label
dionoea closed 18 years ago

closed

Please register or sign in to reply

Labels

None

Milestone

None

Due date

None

Confidentiality

Not confidential

0 Participants

VideoLAN code repository instance