CVE-2011-2194

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2011-2194

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2011-2194.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2011-2194

Downstream

DEBIAN-CVE-2011-2194

DSA-2257-1

Published

2011-06-24T20:55:03Z

Modified

2026-04-10T03:41:49.530424Z

Summary

[none]

Details

Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow.

References

http://secunia.com/advisories/44892
http://www.debian.org/security/2011/dsa-2257
http://www.videolan.org/security/sa1104.html
http://www.securityfocus.com/bid/48171
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14774

CVE-2011-2194

Affected packages