VLC Media Player < 1.1.7 MKV Input Validation Vulnerability
High Nessus Plugin ID 51851
SynopsisThe remote Windows host contains an media player that is affected by a code execution vulnerability.
DescriptionThe version of VLC media player installed on the remote host is earlier than 1.1.7. Such versions are reportedly affected by the following vulnerability :
- Insufficient input validation when parsing a specially crafted Matroska or WebM (MKV) file can be exploited to execute arbitrary code.
SolutionUpgrade to VLC Media Player version 1.1.7 or later.