VLC Media Player TiVo Demuxer Remote Heap-Based Buffer Overflow Vulnerability

VLC media player is prone to a heap-based buffer-overflow vulnerability that affects the TiVo demuxer.

Successful exploits can allow attackers to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.

VLC media player versions 0.9.0 through 1.1.12 are vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus