SHARE
CORE IMPACT v9 - Exploits Update (Fri Nov 06 2009)
VLC Media Player MP4 Demuxer Buffer Overflow Exploit
Exploits/Client Side [Windows]
• Fri Nov 06 2009
VLC media player is prone to multiple stack-based buffer-overflow vulnerabilities. When parsing a MP4, ASF or AVI file with an overly deep box structure, a stack overflow might occur. It would overwrite the return address and thus redirect the execution flow. Attackers can exploit these issues to execute arbitrary code in the context of the affected application or crash the application, denying service to legitimate users. VLC media player 1.0.1 is vulnerable; prior versions may also be affected.
Exploits Vulnerabiltiy: NOCVE-9999-40279