Unrated severityNVD Advisory· Published Jun 21, 2007· Updated Jun 16, 2026
CVE-2007-3316
CVE-2007-3316
Description
Multiple format string vulnerabilities in plugins in VideoLAN VLC Media Player before 0.8.6c allow remote attackers to cause a denial of service (crash) or execute arbitrary code via format string specifiers in (1) an Ogg/Vorbis file, (2) an Ogg/Theora file, (3) a CDDB entry for a CD Digital Audio (CDDA) file, or (4) Service Announce Protocol (SAP) multicast packets.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:videolan:vlc_media_player:0.8.6a:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:videolan:vlc_media_player:0.8.6a:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.6b:*:*:*:*:*:*:*
- (no CPE)range: <0.8.6c
Patches
Vulnerability mechanics
References
16- secunia.com/advisories/25753nvdPatchVendor Advisory
- www.videolan.org/sa0702.htmlnvdPatch
- www.kb.cert.org/vuls/id/200928nvdUS Government Resource
- osvdb.org/37379nvd
- osvdb.org/37380nvd
- osvdb.org/37381nvd
- osvdb.org/37382nvd
- secunia.com/advisories/25980nvd
- secunia.com/advisories/26269nvd
- security.gentoo.org/glsa/glsa-200707-12.xmlnvd
- www.debian.org/security/2007/dsa-1332nvd
- www.isecpartners.com/advisories/2007-001-vlc.txtnvd
- www.securityfocus.com/archive/1/471933/100/0/threadednvd
- www.securityfocus.com/bid/24555nvd
- www.vupen.com/english/advisories/2007/2262nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14600nvd
News mentions
0No linked articles in our index yet.