virus logo Intrusion Prevention

VLC.Media.Player.ID3v2.Tag.DoS

description-logoDescription

This indicates an attack attempt against a denial-of-service vulnerability in
VideoLan VLC.
The vulnerability is caused by an error when the vulnerable software handles a malicious ID3v2 tag. It allows a remote attacker to cause a denial of service via sending a crafted media file.

affected-products-logoAffected Products

VideoLAN VLC older than 1.1.3

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to the latest version, available from the vendor's website:
http://www.videolan.org/vlc/

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2024-07-16 28.827
Modified
 Name:VideoLAN.
VLC.
ID3v2.
Flags.
DoS:VLC.
Media.
Player.
ID3v2.
Tag.
DoS
2023-08-01 25.612
Modified
 Name:VideoLan.
VLC.
ID3v2.
Flags.
DoS:VideoLAN.
VLC.
ID3v2.
Flags.
DoS
2021-01-11 16.995
Removed

References

http://www.videolan.org/security/sa1004.html
ID 24124
Created Aug 19, 2010
Updated Jul 15, 2024
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Exploit Prediction Score 1.38%
Default Action drop
Active
Affected OS Windows, Linux
Affected App Other
Profile Type DoS