virus logo Intrusion Prevention

VideoLAN.VLC.Renamed.Zip.File.Handling.Code.Execution

description-logoDescription

This indicates an attack attempt against a memory-corruption vulnerability in VideoLAN's VLC Media Player.
The vulnerability is caused by an uninitialized-pointer-dereference error when the vulnerable software handles a specially crafted zip file renamed as a media file. It allows a remote attacker to execute arbitrary code.

affected-products-logoAffected Products

VideoLAN VLC media player 1.0.6 and previous versions

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to the latest versions:
http://www.videolan.org/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 23768
Created Jul 22, 2010
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris, MacOS
Affected App Other