VideoLAN VLC Media Player XSPF Memory Corruption
Schweregrad:: Mittel
CVE Kennungen:: CVE-2008-4558
Hinweisdatum: 21 Juli 2015
Beschreibung
Array index error in VLC media player 0.9.2 allows remote attackers to overwrite arbitrary memory and execute arbitrary code via an XSPF playlist file with a negative identifier tag, which passes a signed comparison.
Trend Micro Lösungen
Apply associated Trend Micro DPI Rules.
Lösungen
Trend Micro Deep Security DPI Rule Number: 1002982
Trend Micro Deep Security DPI Rule Name: 1002982 - VideoLAN VLC Media Player XSPF Memory Corruption
Betroffene Software und Version:
- videolan vlc_media_player 0.9.2