This script is Copyright (C) 2011 Tenable Network Security, Inc.
The remote Windows host contains a media player that can allow code
The version of VLC media player installed on the remote host is 0.8.5
or later and is earlier than 1.1.10. Such versions are affected by an
integer overflow vulnerability that can be exploited by tricking a
user into opening a crafted XSPF playlist file. Exploiting this
vulnerability can lead to application crashes and possibly code
See also :
Upgrade to VLC Media Player version 1.1.10 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.3
Public Exploit Available : true