VLC Media Player 'smb://' URI Handling Remote Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

VLC Media Player 'smb://' URI Handling Remote Buffer Overflow Vulnerability

A working commercial exploit is available through VUPEN Security - Exploit and PoCs Service. This exploit is not otherwise publicly available or known to be circulating in the wild.

The following proofs of concept and exploits are available:

/data/vulnerabilities/exploits/35500.rb
/data/vulnerabilities/exploits/35500.c
/data/vulnerabilities/exploits/35500.py
/data/vulnerabilities/exploits/35500-2.py