Steve Lhomme

3 exploits Active since Jan 2016
CVE-2019-13615 WRITEUP MEDIUM WRITEUP
VLC Media Player < 3.0.3 - Out-of-bounds Read in MKV Module
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement.
CVSS 5.5
CVE-2015-8789 WRITEUP CRITICAL WRITEUP
libEBML < 1.3.3 - Use-After-Free via Deeply Nested EBML Element
Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" followed by another element of an upper level in an EBML document.
CVSS 9.6
CVE-2019-13615 WRITEUP MEDIUM WRITEUP
VLC Media Player < 3.0.3 - Out-of-bounds Read in MKV Module
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement.
CVSS 5.5