FreeBSD : vlc -- stack overflow in MPA, AVI and ASF demuxer (3149ab1c-c8b9-11de-b87b-0011098ad87f)
High Nessus Plugin ID 42355
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionVideoLAN reports :
When parsing a MP4, ASF or AVI file with an overly deep box structure, a stack overflow might occur. It would overwrite the return address and thus redirect the execution flow.
If successful, a malicious third party could trigger execution of arbitrary code within the context of the VLC media player.
SolutionUpdate the affected package.