VideoLAN.VLC.Renamed.Zip.File.Handling.Code.Execution
Description
This indicates an attack attempt against a memory-corruption vulnerability in VideoLAN's VLC Media Player.
The vulnerability is caused by an uninitialized-pointer-dereference error when the vulnerable software handles a specially crafted zip file renamed as a media file. It allows a remote attacker to execute arbitrary code.
Affected Products
VideoLAN VLC media player 1.0.6 and previous versions
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest versions:
http://www.videolan.org/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |