Thread Rating:
  • 1 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
VLC Media Player 3.0.12 fixes multiple remote code execution flaws
#1
Information 
Quote:VideoLan released VLC Media Player 3.0.12 for Windows, Mac, and Linux last week with numerous improvements, features, and security fixes.
 
This release is a significant upgrade for Mac users as it provides native support for Apple Silicon and fixes audio distortion in macOS.
 
In addition to bug fixes and improvements, this release also fixes numerous security vulnerabilities reported by Zhen Zhou of the NSFOCUS Security Team.
 
These buffer overflow or invalid dereference vulnerabilities "could trigger either a crash of VLC or an arbitrary code execution with the privileges of the target user."
 
According to VideoLan's security bulletin, a remote user can exploit this vulnerability by creating specially crafted media files and tricking a user into opening them with VLC.
 
While VideoLan states that this vulnerability will likely crash VLC Media Player, they warn that attackers could use it to leak information or remotely execute commands on the device.

Read more: https://www.bleepingcomputer.com/news/so...ion-flaws/
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
Time Limited: Backup with AOMEI | World ...
Time Limited: Backup...jasonX — 07:28
Mozilla Firefox Browser 124.0
Mozilla Firefox Br...harlan4096 — 07:11
Free Download Manager 6.21.0.5639
Changes in 6.21.0.5...harlan4096 — 07:09
K-Lite Codec Pack 18.2.0 / 18.2.2 Update
Changes in 18.2.0 ...harlan4096 — 07:09
ON1 Photo RAW 2024
  ON1 NoNoise ...jasonX — 07:05

[-]
Birthdays
Today's Birthdays
avatar (41)Hectorvot
avatar (49)knowhanPluts
avatar (37)Williamengiz
Upcoming Birthdays
avatar (42)gapedDow
avatar (36)snorydar
avatar (44)qaqapeti
avatar (42)battsourIonix
avatar (41)CedricSek
avatar (36)Charlesfibre
avatar (41)artmaGoork

[-]
Online Staff
There are no staff members currently online.

>