Overview
» IDS/IPS Signatures
Security Sites
iPolicy Networks Security Advisory
 

VLC Media Player ASS File Buffer Overflow Vulnerability
Date Discovered: 01/21/2010
Severity: High
Application Affected: VLC media player 0.6.8 and earlier
Type: Remote
Identifiers: CVE-2010-0364
Synopsis

VLC Media Player is prone to a buffer overflow vulnerability, which could be exploited to execute arbitrary code on the affected system or cause the application to crash.
Recommended Actions
Install the latest version of VLC Media Player.
Threat Analysis

VLC media player is a well Known multimedia player and multimedia framework capable of reading most audio and video formats. There exists a buffer overflow vulnerability in VLC media player 0.6.8 and earlier versions.

The flaw exists due to improper bounds checking when processing Advanced SubStation Alpha Subtitle (.ass) files. An attacker may exploit this vulnerability by persuading a victim to open specially crafted (.ogg) file containing an associated specially-crafted (.ass) subtitle file, and possibly execute malicious code or launch further attacks on the target system.
References

http://www.securityfocus.com/bid/37832
http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-0364
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0364

Write-up by: Dheeraj Johri