Search for vulnerabilities
Vulnerability details: VCID-awhr-5n93-aaap
Vulnerability ID VCID-awhr-5n93-aaap
Aliases CVE-2007-6683
Summary The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via (1) the :demuxdump-file option in a filename in a playlist, or (2) a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability.
Status Published
Exploitability 0.5
Weighted Severity 4.5
Risk 2.2
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00336 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00336 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00336 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00336 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00336 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00336 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00336 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00336 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00336 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00336 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00366 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00366 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00366 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00391 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00391 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00391 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00432 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00658 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
epss 0.00707 https://api.first.org/data/v1/epss?cve=CVE-2007-6683
cvssv2 5.0 https://nvd.nist.gov/vuln/detail/CVE-2007-6683
Reference id Reference type URL
http://mailman.videolan.org/pipermail/vlc-devel/2007-December/037726.html
http://osvdb.org/42205
http://osvdb.org/42206
https://api.first.org/data/v1/epss?cve=CVE-2007-6683
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6683
http://secunia.com/advisories/29284
http://secunia.com/advisories/29766
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14619
https://trac.videolan.org/vlc/changeset/23197
https://trac.videolan.org/vlc/ticket/1371
http://www.debian.org/security/2008/dsa-1543
http://www.gentoo.org/security/en/glsa/glsa-200803-13.xml
http://www.securityfocus.com/bid/28712
458318 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=458318
cpe:2.3:a:videolan:vlc:0.8.6d:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:videolan:vlc:0.8.6d:*:*:*:*:*:*:*
CVE-2007-6683 https://nvd.nist.gov/vuln/detail/CVE-2007-6683
GLSA-200803-13 https://security.gentoo.org/glsa/200803-13
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2007-6683
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.71990
EPSS Score 0.00336
Published At Nov. 20, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.