icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

VLC Media Player < 1.1.6 Multiple Vulnerabilities

High

Synopsis

The remote host contains an application that allows arbitrary code execution.

Description

The remote host contains VLC player, a multi-media application.

Versions of VLC media player earlier than 1.1.6 are potentially affected by multiple vulnerabilities :

- An integer overflow vulnerability exists due to a failure to properly parse the header of a Real Media, which could then trigger a heap-based buffer overflow. It is not yet known if this issue can be exploited to execute arbitrary code. (CVE-2010-3907)

- There are two heap corruption vulnerabilities in the CDG decoders that arise because of a failure to validate indices into statically-sized arrays on the heap, which could allow for arbitrary code execution. (CVE-2011-0021)

- A heap-based memory corruption vulnerability exists i the StripTags function in the USF decoder. (CVE-20111-0522)

Solution

Upgrade to VLC Media Player version 1.1.6 or later.