VLC Media Player 'mmstu.c' MMS Protocol Handling Buffer Overflow Vulnerability

VLC media player is prone to a heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied input.

Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.

VLC media player 0.8.6i is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus