Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

VLC Media Player < 1.1.5 Samba Share Access Module Code Execution



The remote host contains an application that allows arbitrary code execution.


The remote host contains VLC player, a multi-media application.

Versions of VLC media player earlier than 1.1.5 are potentially affected by a code execution vulnerability. Due to an error in the declaration of code calling conventions, VLC suffers from a stack smashing attack in the Samba network share access module which could lead to arbitrary code execution. Note that this issue only affects VLC for Windows.


Upgrade to VLC Media Player version 1.1.5 or later.