VideoLAN VLC Media Player XSPF Memory Corruption
Gravedad: Medio
Identificadores de CVE : CVE-2008-4558
Fecha recomendada: 21 de julio de 2015
Descripción
Array index error in VLC media player 0.9.2 allows remote attackers to overwrite arbitrary memory and execute arbitrary code via an XSPF playlist file with a negative identifier tag, which passes a signed comparison.
Revelación de la información
Apply associated Trend Micro DPI Rules.
Soluciones
Trend Micro Deep Security DPI Rule Number: 1002982
Trend Micro Deep Security DPI Rule Name: 1002982 - VideoLAN VLC Media Player XSPF Memory Corruption
Software y versión afectados
- videolan vlc_media_player 0.9.2