DEBIAN-CVE-2010-3907
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 03 Jan 2011, 20:00
Last modified:28 Apr 2026, 20:11
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
03 Jan 2011, 20:00
Published
Vulnerability first disclosed
28 Apr 2026, 20:11
Last Modified
Vulnerability information updated
Description
Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a zero i_subpackets value in a Real Media file, leading to a heap-based buffer overflow.
Affected Systems
- debian•vlc
< 1.1.3-1squeeze1 | < 1.1.3-1squeeze1 | < 1.1.3-1squeeze1 | < 1.1.3-1squeeze1