VulnerableCode Vulnerability Details

System	Score	Found at
epss	0.86225	https://api.first.org/data/v1/epss?cve=CVE-2010-3275
epss	0.86225	https://api.first.org/data/v1/epss?cve=CVE-2010-3275
epss	0.86225	https://api.first.org/data/v1/epss?cve=CVE-2010-3275
epss	0.86225	https://api.first.org/data/v1/epss?cve=CVE-2010-3275
epss	0.86225	https://api.first.org/data/v1/epss?cve=CVE-2010-3275
epss	0.86225	https://api.first.org/data/v1/epss?cve=CVE-2010-3275
epss	0.86225	https://api.first.org/data/v1/epss?cve=CVE-2010-3275
epss	0.86225	https://api.first.org/data/v1/epss?cve=CVE-2010-3275
epss	0.86225	https://api.first.org/data/v1/epss?cve=CVE-2010-3275
cvssv2	9.3	https://nvd.nist.gov/vuln/detail/CVE-2010-3275

Data source	Exploit-DB
Date added	March 26, 2011
Description	VideoLAN VLC Media Player 1.1.4 - 'AMV' Dangling Pointer (Metasploit)
Ransomware campaign use	Known
Source publication date	March 26, 2011
Exploit type	remote
Platform	windows
Source update date	Nov. 15, 2016

Data source	Metasploit
Description	This module exploits VLC media player when handling a .AMV file. By flipping the 0x41st byte in the file format (video width/height), VLC crashes due to an invalid pointer, which allows remote attackers to gain arbitrary code execution. The vulnerable packages include: VLC 1.1.4, VLC 1.1.5, VLC 1.1.6, VLC 1.1.7. Also, please note that IE 8 targets require Java support in order to run properly.
Note	Reliability: - unknown-reliability Stability: - unknown-stability SideEffects: - unknown-side-effects
Ransomware campaign use	Unknown
Source publication date	March 23, 2011
Platform	Windows
Source URL	https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/windows/browser/vlc_amv.rb

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C Found at https://nvd.nist.gov/vuln/detail/CVE-2010-3275

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Vulnerability ID	VCID-9fcx-1pdf-7ues
Aliases	CVE-2010-3275
Summary	Multiple vulnerabilities have been found in VLC, the worst of which could lead to user-assisted execution of arbitrary code.
Status	Published
Exploitability	2.0
Weighted Severity	8.4
Risk	10.0
Affected and Fixed Packages	Package Details

Percentile	0.99397
EPSS Score	0.86225
Published At	April 2, 2026, 12:55 p.m.

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2010-3275
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3275
		http://secunia.com/advisories/43826
		http://securityreason.com/securityalert/8162
		http://securitytracker.com/id?1025250
		https://exchange.xforce.ibmcloud.com/vulnerabilities/66259
		https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14718
		http://www.coresecurity.com/content/vlc-vulnerabilities-amv-nsv-files
		http://www.debian.org/security/2011/dsa-2211
		http://www.exploit-db.com/exploits/17048
		http://www.metasploit.com/modules/exploit/windows/browser/vlc_amv
		http://www.osvdb.org/71277
		http://www.securityfocus.com/archive/1/517150/100/0/threaded
		http://www.securityfocus.com/bid/47012
		http://www.videolan.org/vlc/releases/1.1.8.html
		http://www.vupen.com/english/advisories/2011/0759
cpe:2.3:a:videolan:vlc_media_player::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player::::::::
cpe:2.3:a:videolan:vlc_media_player:0.1.99b:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.1.99b:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.1.99e:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.1.99e:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.1.99f:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.1.99f:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.1.99g:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.1.99g:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.1.99h:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.1.99h:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.1.99i:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.1.99i:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.0:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.60:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.60:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.61:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.61:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.62:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.62:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.63:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.63:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.70:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.70:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.71:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.71:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.72:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.72:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.73:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.73:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.80:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.80:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.81:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.81:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.82:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.82:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.83:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.83:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.90:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.90:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.91:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.91:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.2.92:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.2.92:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.3.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.3.0:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.3.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.3.1:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.4.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.4.0:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.4.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.4.1:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.4.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.4.2:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.4.3:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.4.3:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.4.4:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.4.4:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.4.5:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.4.5:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.4.6:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.4.6:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.5.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.5.0:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.5.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.5.1:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.5.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.5.2:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.5.3:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.5.3:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.6.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.6.0:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.6.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.6.1:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.6.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.6.2:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.7.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.7.0:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.7.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.7.2:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.8.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.8.0:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.8.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.8.1:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.8.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.8.2:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.8.4:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.8.4:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.8.5:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.8.5:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.8.6:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.8.6:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.9.10:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.9.10:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.9.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.9.2:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.9.3:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.9.3:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.9.4:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.9.4:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.9.5:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.9.5:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.9.6:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.9.6:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.9.8a:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.9.8a:::::::*
cpe:2.3:a:videolan:vlc_media_player:0.9.9:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:0.9.9:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.0.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.0.0:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.0.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.0.1:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.0.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.0.2:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.0.3:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.0.3:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.0.4:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.0.4:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.0.5:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.0.5:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.0.6:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.0.6:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.1.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.1.0:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.1.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.1.1:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.1.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.1.2:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.1.3:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.1.3:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.1.4:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.1.4:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.1.5:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.1.5:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.1.6:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.1.6:::::::*
cpe:2.3:a:videolan:vlc_media_player:1.1.6.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc_media_player:1.1.6.1:::::::*
CVE-2010-3275		https://nvd.nist.gov/vuln/detail/CVE-2010-3275
CVE-2010-3275;OSVDB-71277	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17048.rb
GLSA-201411-01		https://security.gentoo.org/glsa/201411-01