VideoLan VLC Media Player Unspecified Denial Of Service Vulnerability

Bugtraq ID:	22003
Class:	Input Validation Error
CVE:	CVE-2007-0256
Remote:	Yes
Local:	No
Published:	Jan 11 2007 12:00AM
Updated:	Jun 20 2007 03:39AM
Credit:	shinnai is credited with the discovery of this issue.
Vulnerable:	VideoLAN VLC media player 0.8.6a
Not Vulnerable:	VideoLAN VLC media player 0.8.6b

VideoLan VLC Media Player Unspecified Denial Of Service Vulnerability

VLC Media Player is prone to a denial-of-service vulnerability because it fails to sufficiently handle user-supplied data.

Exploiting this issue can allow an attacker to crash the application, effectively denying service to the user.

VLC Media Player 0.8.6a is vulnerable; other versions may also be affected.

VideoLan VLC Media Player Unspecified Denial Of Service Vulnerability

To exploit this issue, an attacker must entice an unsuspecting victim to open a malicious WMV file.

The following example exploit is available:

• /data/vulnerabilities/exploits/22003.py

VideoLan VLC Media Player Unspecified Denial Of Service Vulnerability

Solution:
The vendor addressed this issue with the release of 0.8.6b. Please see the references for more information.


VideoLAN VLC media player 0.8.6a

• VideoLAN vlc-0.8.6c-win32.exe
  http://www.videolan.org/mirror.php?file=vlc/0.8.6c/win32/vlc-0.8.6c-wi n32.exe

VideoLan VLC Media Player Unspecified Denial Of Service Vulnerability

References:

• VLC Homepage (VideoLAN)