[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2007-6681":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T20:55:37.768Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":106,"duplicate_of":9,"upstream":107,"downstream":108,"duplicates":113,"related":114,"reserved_at":9,"published_at":115,"modified_at":116,"state":117,"summary":118,"references_raw":126,"kevs":217,"epss":218,"epss_history":221,"metrics":452,"affected":457},"CVE-2007-6681","Stack-based buffer overflow in modules/demux/subtitle.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via a long subtitle in a (1) MicroDvd, (2) SSA, and (3) Vplayer file.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[69,85],{"_key":70,"name":71,"source":72,"url":73,"maturity":74,"reliability_score":75,"verified":76,"type":77,"platforms":78,"requires_auth":9,"exploitdb":80,"metasploit":9},"5667","VideoLAN VLC Media Player 0.8.6d SSA Parsing Double Sh311 - Universal","exploit-database","https://www.exploit-db.com/exploits/5667","weaponized",0.8,true,"local",[79],"windows",{"verified":76,"type":77,"platform":79,"file":81,"codes":82},"exploits/windows/local/5667.py",[83,84],"OSVDB-44461","CVE-2008-1881",{"_key":86,"name":87,"source":72,"url":88,"maturity":74,"reliability_score":75,"verified":76,"type":77,"platforms":89,"requires_auth":9,"exploitdb":90,"metasploit":9},"5498","Kantaris 0.3.4 - SSA Subtitle Local Buffer Overflow","https://www.exploit-db.com/exploits/5498",[79],{"verified":76,"type":77,"platform":79,"file":91,"codes":92},"exploits/windows/local/5498.py",[93,94,95,96,97,98,99,100,101,102,103,104,105,7],"OSVDB-44578","CVE-2008-1769","OSVDB-43702","CVE-2008-1489","OSVDB-43436","CVE-2008-0984","OSVDB-43002","CVE-2008-0296","OSVDB-42207","CVE-2008-0295","OSVDB-42194","CVE-2008-0073","OSVDB-42193",[],[],[109,111],{"_key":110},"DSA-1543-1",{"_key":112},"DEBIAN-CVE-2007-6681",[],[],"2008-01-17T00:00:00.000Z","2024-08-07T16:18:20.564Z","Modified",{"cisa_kev":119,"cisa_ransomware":119,"cisa_vendor":9,"epss_severity":120,"epss_score":121,"severity":120,"severity_score":122,"severity_version":123,"severity_source":124,"severity_vector":125,"severity_status":117},false,"high",0.39044,7.5,"v2.0","nvd","AV:N/AC:L/Au:N/C:P/I:P/A:P",[127,134,140,145,150,157,162,166,171,176,182,186,190,194,199,203,208,213],{"url":128,"sources":129,"tags":131},"http://secunia.com/advisories/29284",[130,124],"cve.org",[132,133],"Third Party Advisory","X Refsource SECUNIA",{"url":135,"sources":136,"tags":137},"http://www.debian.org/security/2008/dsa-1543",[130,124],[138,139],"Vendor Advisory","X Refsource DEBIAN",{"url":141,"sources":142,"tags":143},"http://securityreason.com/securityalert/3550",[130,124],[132,144],"X Refsource SREASON",{"url":73,"sources":146,"tags":147},[130,124],[148,149],"Exploit","X Refsource EXPLOIT DB",{"url":151,"sources":152,"tags":153},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14334",[130,124],[154,155,156],"VDB Entry","Signature","X Refsource OVAL",{"url":158,"sources":159,"tags":160},"http://www.videolan.org/security/sa0801.php",[130,124],[161],"X Refsource CONFIRM",{"url":163,"sources":164,"tags":165},"http://secunia.com/advisories/28233",[130,124],[132,133],{"url":167,"sources":168,"tags":169},"http://security.gentoo.org/glsa/glsa-200804-25.xml",[130,124],[138,170],"X Refsource GENTOO",{"url":172,"sources":173,"tags":174},"http://www.securityfocus.com/bid/27015",[130,124],[154,175],"X Refsource BID",{"url":177,"sources":178,"tags":179},"http://mailman.videolan.org/pipermail/vlc-devel/2007-June/033394.html",[130,124],[180,181],"Mailing List","X Refsource MLIST",{"url":183,"sources":184,"tags":185},"http://wiki.videolan.org/Changelog/0.8.6f",[130,124],[161],{"url":187,"sources":188,"tags":189},"http://secunia.com/advisories/29800",[130,124],[132,133],{"url":191,"sources":192,"tags":193},"http://mailman.videolan.org/pipermail/vlc-devel/2007-June/032672.html",[130,124],[180,181],{"url":195,"sources":196,"tags":197},"http://www.securityfocus.com/archive/1/485488/30/0/threaded",[130,124],[180,198],"X Refsource BUGTRAQ",{"url":200,"sources":201,"tags":202},"http://secunia.com/advisories/29766",[130,124],[132,133],{"url":204,"sources":205,"tags":206},"http://osvdb.org/42207",[130,124],[154,207],"X Refsource OSVDB",{"url":209,"sources":210,"tags":211},"http://aluigi.altervista.org/adv/vlcboffs-adv.txt",[130,124],[212],"X Refsource MISC",{"url":214,"sources":215,"tags":216},"http://www.gentoo.org/security/en/glsa/glsa-200803-13.xml",[130,124],[138,170],[],{"date":219,"score":121,"percentile":220},"2026-06-06",0.9736,[222,226,229,231,233,235,237,239,241,244,246,248,250,252,254,256,259,262,264,266,268,271,273,275,277,279,281,283,286,290,293,296,299,302,305,308,310,313,316,318,321,324,327,329,332,334,336,338,341,343,345,348,351,354,357,360,363,365,368,371,373,375,377,380,382,385,387,390,393,395,397,400,403,406,409,412,415,417,420,423,425,428,431,434,436,438,441,444,446,449],{"date":223,"score":224,"percentile":225},"2025-11-04",0.4431,0.97394,{"date":227,"score":224,"percentile":228},"2025-11-05",0.97395,{"date":230,"score":224,"percentile":225},"2025-11-06",{"date":232,"score":224,"percentile":228},"2025-11-07",{"date":234,"score":224,"percentile":225},"2025-11-08",{"date":236,"score":224,"percentile":225},"2025-11-09",{"date":238,"score":224,"percentile":225},"2025-11-10",{"date":240,"score":224,"percentile":225},"2025-11-11",{"date":242,"score":224,"percentile":243},"2025-11-12",0.97397,{"date":245,"score":224,"percentile":243},"2025-11-13",{"date":247,"score":224,"percentile":243},"2025-11-14",{"date":249,"score":224,"percentile":225},"2025-11-15",{"date":251,"score":224,"percentile":225},"2025-11-16",{"date":253,"score":224,"percentile":225},"2025-11-17",{"date":255,"score":224,"percentile":243},"2025-11-18",{"date":257,"score":224,"percentile":258},"2025-11-19",0.97398,{"date":260,"score":224,"percentile":261},"2025-11-20",0.97399,{"date":263,"score":224,"percentile":228},"2025-11-21",{"date":265,"score":224,"percentile":225},"2025-11-22",{"date":267,"score":224,"percentile":228},"2025-11-23",{"date":269,"score":224,"percentile":270},"2025-11-24",0.97396,{"date":272,"score":224,"percentile":243},"2025-11-25",{"date":274,"score":224,"percentile":243},"2025-11-26",{"date":276,"score":224,"percentile":258},"2025-11-27",{"date":278,"score":224,"percentile":261},"2025-11-28",{"date":280,"score":224,"percentile":243},"2025-11-29",{"date":282,"score":224,"percentile":228},"2025-11-30",{"date":284,"score":224,"percentile":285},"2025-12-01",0.97418,{"date":287,"score":288,"percentile":289},"2025-12-02",0.37649,0.97042,{"date":291,"score":288,"percentile":292},"2025-12-03",0.97044,{"date":294,"score":288,"percentile":295},"2025-12-04",0.97021,{"date":297,"score":288,"percentile":298},"2025-12-05",0.97023,{"date":300,"score":288,"percentile":301},"2025-12-06",0.97024,{"date":303,"score":288,"percentile":304},"2025-12-07",0.97025,{"date":306,"score":288,"percentile":307},"2025-12-08",0.97026,{"date":309,"score":288,"percentile":307},"2025-12-09",{"date":311,"score":288,"percentile":312},"2025-12-10",0.97033,{"date":314,"score":288,"percentile":315},"2025-12-11",0.97035,{"date":317,"score":288,"percentile":315},"2025-12-12",{"date":319,"score":288,"percentile":320},"2025-12-13",0.97038,{"date":322,"score":288,"percentile":323},"2025-12-14",0.97034,{"date":325,"score":288,"percentile":326},"2025-12-15",0.97036,{"date":328,"score":288,"percentile":320},"2025-12-16",{"date":330,"score":288,"percentile":331},"2025-12-17",0.97041,{"date":333,"score":288,"percentile":289},"2025-12-18",{"date":335,"score":288,"percentile":292},"2025-12-19",{"date":337,"score":288,"percentile":292},"2025-12-20",{"date":339,"score":288,"percentile":340},"2025-12-21",0.97043,{"date":342,"score":288,"percentile":340},"2025-12-22",{"date":344,"score":288,"percentile":292},"2025-12-23",{"date":346,"score":288,"percentile":347},"2025-12-24",0.97047,{"date":349,"score":288,"percentile":350},"2025-12-25",0.97052,{"date":352,"score":288,"percentile":353},"2025-12-26",0.97053,{"date":355,"score":288,"percentile":356},"2025-12-27",0.97078,{"date":358,"score":288,"percentile":359},"2025-12-28",0.97054,{"date":361,"score":288,"percentile":362},"2025-12-29",0.97055,{"date":364,"score":288,"percentile":362},"2025-12-30",{"date":366,"score":288,"percentile":367},"2025-12-31",0.97059,{"date":369,"score":288,"percentile":370},"2026-01-01",0.97084,{"date":372,"score":288,"percentile":370},"2026-01-02",{"date":374,"score":288,"percentile":370},"2026-01-03",{"date":376,"score":288,"percentile":367},"2026-01-04",{"date":378,"score":288,"percentile":379},"2026-01-05",0.9706,{"date":381,"score":288,"percentile":379},"2026-01-06",{"date":383,"score":288,"percentile":384},"2026-01-07",0.97061,{"date":386,"score":288,"percentile":384},"2026-01-08",{"date":388,"score":288,"percentile":389},"2026-01-09",0.97063,{"date":391,"score":288,"percentile":392},"2026-01-10",0.97065,{"date":394,"score":288,"percentile":389},"2026-01-11",{"date":396,"score":288,"percentile":389},"2026-01-12",{"date":398,"score":288,"percentile":399},"2026-01-13",0.97064,{"date":401,"score":288,"percentile":402},"2026-01-14",0.97067,{"date":404,"score":288,"percentile":405},"2026-01-15",0.97068,{"date":407,"score":288,"percentile":408},"2026-01-16",0.97071,{"date":410,"score":288,"percentile":411},"2026-01-17",0.97072,{"date":413,"score":288,"percentile":414},"2026-01-18",0.97074,{"date":416,"score":288,"percentile":414},"2026-01-19",{"date":418,"score":288,"percentile":419},"2026-01-20",0.97075,{"date":421,"score":288,"percentile":422},"2026-01-21",0.97076,{"date":424,"score":288,"percentile":422},"2026-01-22",{"date":426,"score":288,"percentile":427},"2026-01-23",0.97079,{"date":429,"score":288,"percentile":430},"2026-01-24",0.97081,{"date":432,"score":288,"percentile":433},"2026-01-25",0.97082,{"date":435,"score":288,"percentile":370},"2026-01-26",{"date":437,"score":288,"percentile":370},"2026-01-27",{"date":439,"score":288,"percentile":440},"2026-01-28",0.97085,{"date":442,"score":288,"percentile":443},"2026-01-29",0.97087,{"date":445,"score":288,"percentile":443},"2026-01-30",{"date":447,"score":288,"percentile":448},"2026-01-31",0.97088,{"date":450,"score":288,"percentile":451},"2026-02-01",0.97112,[453],{"source":124,"cvss_v2_0":454,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":122,"baseSeverity":9,"vectorString":125,"impactScore":455,"exploitabilityScore":456},6.4,10,[458],{"ecosystem":9,"name":459,"vendor":460,"product":459,"cpe_part":461,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":462},"vlc","videolan","a",[463],{"version":464,"is_range":76,"range_type":465,"version_start":9,"version_start_type":9,"version_end":466,"version_end_type":467,"fixed_in":9},"lte0.8.6d","cpe","0.8.6d","including"]