CVE-2013-6283

VideoLAN VLC Media Player 2.0.8 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a URL in a m3u file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 92%
VendorProductVersion
videolanvlc_media_player
𝑥
≤ 2.0.8
videolanvlc_media_player
1.0.0
videolanvlc_media_player
1.0.1
videolanvlc_media_player
1.0.2
videolanvlc_media_player
1.0.3
videolanvlc_media_player
1.0.4
videolanvlc_media_player
1.0.5
videolanvlc_media_player
1.0.6
videolanvlc_media_player
1.1.0
videolanvlc_media_player
1.1.1
videolanvlc_media_player
1.1.2
videolanvlc_media_player
1.1.3
videolanvlc_media_player
1.1.4
videolanvlc_media_player
1.1.4.1
videolanvlc_media_player
1.1.5
videolanvlc_media_player
1.1.6
videolanvlc_media_player
1.1.6.1
videolanvlc_media_player
1.1.7
videolanvlc_media_player
1.1.8
videolanvlc_media_player
1.1.9
videolanvlc_media_player
1.1.10
videolanvlc_media_player
1.1.10.1
videolanvlc_media_player
1.1.11
videolanvlc_media_player
1.1.12
videolanvlc_media_player
1.1.13
videolanvlc_media_player
2.0.0
videolanvlc_media_player
2.0.1
videolanvlc_media_player
2.0.2
videolanvlc_media_player
2.0.3
videolanvlc_media_player
2.0.4
videolanvlc_media_player
2.0.5
videolanvlc_media_player
2.0.6
videolanvlc_media_player
2.0.7
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
vlc
bullseye (security)
3.0.21-0+deb11u1
fixed
bullseye
3.0.21-0+deb11u1
fixed
bookworm
3.0.21-0+deb12u1
fixed
bookworm (security)
3.0.21-0+deb12u1
fixed
sid
3.0.21-2
fixed
trixie
3.0.21-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
vlc
utopic
not-affected
trusty
not-affected
saucy
ignored
raring
ignored
quantal
ignored
precise
not-affected
lucid
ignored
Common Weakness Enumeration
References
http://www.exploit-db.com/exploits/27700
http://www.osvdb.org/96603
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19318
http://www.exploit-db.com/exploits/27700
http://www.osvdb.org/96603
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19318