VideoLAN VLC Media Player XSPF Memory Corruption
Gravità: : Medio
Identificatori CVE: CVE-2008-4558
Data notifica: 21 luglio 2015
Descrizione
Array index error in VLC media player 0.9.2 allows remote attackers to overwrite arbitrary memory and execute arbitrary code via an XSPF playlist file with a negative identifier tag, which passes a signed comparison.
Informazioni esposizione:
Apply associated Trend Micro DPI Rules.
Soluzioni
Trend Micro Deep Security DPI Rule Number: 1002982
Trend Micro Deep Security DPI Rule Name: 1002982 - VideoLAN VLC Media Player XSPF Memory Corruption
Software e versione interessati:
- videolan vlc_media_player 0.9.2