VulnerableCode Vulnerability Details

System	Score	Found at
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.62287	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.6769	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.95901	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.95901	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.95901	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.95901	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.96106	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.96106	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.96106	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.96106	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.96106	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.96106	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.96106	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.96106	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
epss	0.96423	https://api.first.org/data/v1/epss?cve=CVE-2012-1775
cvssv2	9.3	https://nvd.nist.gov/vuln/detail/CVE-2012-1775

Vulnerability ID	VCID-1cjp-e6yv-aaaq
Aliases	CVE-2012-1775
Summary	Stack-based buffer overflow in VideoLAN VLC media player before 2.0.1 allows remote attackers to execute arbitrary code via a crafted MMS:// stream.
Status	Published
Exploitability	2.0
Weighted Severity	8.4
Risk	10.0
Affected and Fixed Packages	Package Details

Data source	Exploit-DB
Date added	May 3, 2012
Description	VideoLAN VLC Media Player 2.0.0 - Mms Stream Handling Buffer Overflow (Metasploit)
Ransomware campaign use	Known
Source publication date	May 3, 2012
Exploit type	remote
Platform	windows
Source update date	Nov. 15, 2016

Data source	Metasploit
Description	This module exploits a buffer overflow in VLC media player VLC media player prior to 2.0.0. The vulnerability is due to a dangerous use of sprintf which can result in a stack buffer overflow when handling a malicious MMS URI. This module uses the browser as attack vector. A specially crafted MMS URI is used to trigger the overflow and get flow control through SEH overwrite. Control is transferred to code located in the heap through a standard heap spray. The module only targets IE6 and IE7 because no DEP/ASLR bypass has been provided.
Note	{}
Ransomware campaign use	Unknown
Source publication date	March 15, 2012
Platform	Windows
Source URL	https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/windows/browser/vlc_mms_bof.rb

Percentile	0.98207
EPSS Score	0.62287
Published At	March 28, 2025, 12:55 p.m.