VLC Media Player < 1.1.5 Buffer Overflow
High Nessus Plugin ID 50650
SynopsisThe remote Windows host contains a media player that allows arbitrary code execution.
DescriptionThe version of VLC media player installed on the remote Windows host is earlier than 1.1.5. Such versions are vulnerable to a stack smashing attack in the Samba network share access module due to an error in the way VLC calls the Windows API function 'WNetAddConnection2A()' when opening 'smb://' URLs.
If an attacker can trick a user into opening a specially crafted URL with the affected application, he can leverage this issue to execute arbitrary code subject to that user's permissions.
SolutionUpgrade to VLC Media Player version 1.1.5 or later.