vlc
Page content
- Author: voroskoi
- Vulnerable: 0.8.6-3
- Unaffected: 0.8.6-4terminus1
Some vulnerabilities have been reported in VLC Media Player, which can be exploited by malicious people to compromise a user’s system. The vulnerabilities are caused due to format string errors in the Ogg/Vorbis, Ogg/Theora, CDDA (CD Digital Audio), and SAP (Service Announce Protocol) plugins. These can be exploited to execute arbitrary code via a specially crafted .ogg or .ogm file (Vorbis/Theora), CDDB entry, or SAP/SDP message.
- Bug Tracker URL: http://bugs.frugalware.org/task/2182