Release DateJun 07, 2011 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attempt to exploit a remote Code Execution vulnerability in VLC Media Player.The vulnerability is caused by an error when the software handles a specially crafted ".mkv" file. It allows a remote attacker to execute arbitrary code. |
Affected ProductsVideoLAN VLC Media Player 1.1.6 and prior. |
Recommended ActionsUpgrade to the version 1.1.7, available from the Web site.http://www.videolan.org/ |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2011-0531CVE-2011-0522 |
Reference/shttp://www.securityfocus.com/bid/46008 (BugTraq) |
