Unrated severityNVD Advisory· Published Jan 24, 2020· Updated Aug 6, 2024
CVE-2014-9626
CVE-2014-9626
Description
Integer underflow in the MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a box size less than 7.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- VideoLAN/VLC media playerdescription
- Range: <2.1.6
Patches
Vulnerability mechanics
References
3- openwall.com/lists/oss-security/2015/01/20/5mitrex_refsource_MISC
- github.com/videolan/vlc/commit/2e7c7091a61aa5d07e7997b393d821e91f593c39mitrex_refsource_MISC
- www.videolan.org/security/sa1501.htmlmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.