cve/2008/CVE-2008-4654.md

CVE-2008-4654

Description

Stack-based buffer overflow in the parse_master function in the Ty demux plugin (modules/demux/ty.c) in VLC Media Player 0.9.0 through 0.9.4 allows remote attackers to execute arbitrary code via a TiVo TY media file with a header containing a crafted size value.

POC

Reference

• http://securityreason.com/securityalert/4460

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/CVEDB/PoC-List
• https://github.com/CVEDB/awesome-cve-repo
• https://github.com/KernelErr/VLC-CVE-2008-4654-Exploit
• https://github.com/bongbongco/CVE-2008-4654
• https://github.com/rnnsz/CVE-2008-4654