VYPR
Unrated severityNVD Advisory· Published Oct 22, 2008· Updated Jun 16, 2026

CVE-2008-4654

CVE-2008-4654

Description

Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty.c) in VLC Media Player 0.9.0 through 0.9.4 allows remote attackers to execute arbitrary code via a TiVo TY media file with a header containing a crafted size value.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:videolan:vlc_media_player:0.9:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:videolan:vlc_media_player:0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:videolan:vlc_media_player:0.9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:videolan:vlc_media_player:0.9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:videolan:vlc_media_player:0.9.3:*:*:*:*:*:*:*
    • cpe:2.3:a:videolan:vlc_media_player:0.9.4:*:*:*:*:*:*:*
  • Range: 0.9.0-0.9.4

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.