VLC Media Player 'Subtitle' Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

VLC Media Player 'Subtitle' Buffer Overflow Vulnerability

VLC media player is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input.

Attackers can leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.

VLC media player 0.8.6e is vulnerable; other versions may also be affected.