VLC Media Player '.flv' File Denial of Service Vulnerability

Bugtraq ID:	52469
Class:	Unknown
CVE:
Remote:	Yes
Local:	No
Published:	Mar 12 2012 12:00AM
Updated:	Mar 12 2012 12:00AM
Credit:	Senator of Pirates
Vulnerable:	VideoLAN VLC media player 1.1.11 VideoLAN VLC media player 1.1.9 VideoLAN VLC media player 1.1.8 VideoLAN VLC media player 1.1.7 VideoLAN VLC media player 1.1.6 1 VideoLAN VLC media player 1.1.4 VideoLAN VLC media player 1.1.4 VideoLAN VLC media player 1.1.3 VideoLAN VLC media player 1.1.2 VideoLAN VLC media player 1.1.1 VideoLAN VLC media player 1.0.6 VideoLAN VLC media player 1.0.5 VideoLAN VLC media player 1.0.3 VideoLAN VLC media player 1.0.2 VideoLAN VLC media player 1.0.1 VideoLAN VLC media player 1.0 VideoLAN VLC media player 1.1.6 VideoLAN VLC media player 1.1.5 VideoLAN VLC media player 1.1.3 VideoLAN VLC media player 1.1.2 VideoLAN VLC media player 1.1.10 VideoLAN VLC media player 1.1.1 VideoLAN VLC media player 1.1.0 VideoLAN VLC media player 1.0.4
Not Vulnerable:

VLC Media Player '.flv' File Denial of Service Vulnerability

VLC Media Player is prone to a denial-of-service vulnerability.

Successful exploits may allow attackers to crash the affected application, denying service to legitimate users.

VLC Media Player 1.1.11 and prior are vulnerable.

VLC Media Player '.flv' File Denial of Service Vulnerability

The following exploit code is available:

• /data/vulnerabilities/exploits/52469.rb

VLC Media Player '.flv' File Denial of Service Vulnerability

Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

VLC Media Player '.flv' File Denial of Service Vulnerability

References:

• Vendor Homepage (VideoLAN)