CVE-2008-3794

Name of the Vulnerable Software and Affected Versions VLC Media Player version 0.8.6i

Description The issue is related to an integer signedness error in the mms ReceiveCommand function, located in modules/access/mms/mmstu.c, which can be exploited by a remote attacker to execute arbitrary code. This is achieved through a crafted mmst link containing a negative size value, bypassing a size check and triggering an integer overflow, followed by a buffer overflow.

Recommendations For VLC Media Player version 0.8.6i, consider disabling the mms ReceiveCommand function as a temporary workaround until a patch is available. Restrict access to the mmstu.c module to minimize the risk of exploitation. Avoid using crafted mmst links with negative size values in the affected API endpoint until the issue is resolved.