CVE-2007-6682

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
17/01/2008
Last modified:
09/04/2025

Description

Format string vulnerability in the httpd_FileCallBack function (network/httpd.c) in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via format string specifiers in the Connection parameter.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:videolan:vlc:*:*:*:*:*:*:*:* 0.8.6d (including)