{"id":"CVE-2013-1954","details":"The ASF Demuxer (modules/demux/asf/asf.c) in VideoLAN VLC media player 2.0.5 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted ASF movie that triggers an out-of-bounds read.","modified":"2026-04-10T03:42:45.751958Z","published":"2013-07-10T19:55:04Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/59793"},{"type":"ADVISORY","url":"http://www.videolan.org/security/sa1302.html"},{"type":"EVIDENCE","url":"http://trac.videolan.org/vlc/ticket/8024"},{"type":"WEB","url":"http://git.videolan.org/?p=vlc.git%3Ba=commitdiff%3Bh=b31ce523331aa3a6e620b68cdfe3f161d519631e"},{"type":"WEB","url":"http://marc.info/?l=oss-security&m=136593191416152&w=2"},{"type":"WEB","url":"http://marc.info/?l=oss-security&m=136610343501731&w=2"},{"type":"WEB","url":"http://www.osvdb.org/89598"},{"type":"WEB","url":"http://www.securityfocus.com/bid/57333"},{"type":"WEB","url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17023"}],"schema_version":"1.7.5"}