VLC Media Player <= 2.2.8 Use-After-Free RCE
Medium Nessus Plugin ID 112216
SynopsisA media player installed on the remote host is affected by a remote code execution vulnerability.
DescriptionThe version of VLC media player installed on the remote host is equal or prior to 2.2.8. It is, therefore, affected by a use-after-free vulnerability. An attacker could leverage this vulnerability to cause a denial of service or potentially execute arbitrary code.
SolutionUpgrade to VLC version 3.0.3 or later.