CVE-2009-1045
Videolan Vlc Media Player - Improper Input Validation
Title source: ruleDescription
requests/status.xml in VLC 0.9.8a allows remote attackers to cause a denial of service (stack consumption and crash) via a long input argument in an in_play action.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by TheLeader · perldoswindows
https://www.exploit-db.com/exploits/8213
References (6)
Scores
EPSS
0.0998
EPSS Percentile
93.1%
Details
CWE
CWE-20
Status
published
Products (1)
videolan/vlc_media_player
0.9.8a
Published
Mar 23, 2009
Tracked Since
Feb 18, 2026