VideoLAN VLC Media Player XSPF Memory Corruption
Schweregrad: : Medium
Identificador(es) CVE: : CVE-2008-4558
Data do informe: 21 julho 2015
Descrição
Array index error in VLC media player 0.9.2 allows remote attackers to overwrite arbitrary memory and execute arbitrary code via an XSPF playlist file with a negative identifier tag, which passes a signed comparison.
Exposição das informações
Apply associated Trend Micro DPI Rules.
Solução
Trend Micro Deep Security DPI Rule Number: 1002982
Trend Micro Deep Security DPI Rule Name: 1002982 - VideoLAN VLC Media Player XSPF Memory Corruption
Software infectado e versão:
- videolan vlc_media_player 0.9.2