by Carol~ Moderator - 3/19/12 6:55 AM

VLC Media Player MMS and Real RTSP Vulnerabilities

Release Date : 2012-03-19

Criticality level : Highly critical
Impact : System access
Where : From remote
Solution Status : Vendor Patch

Software: VLC Media Player 2.x

Multiple vulnerabilities have been reported in VLC Media Player, which can be exploited by malicious people to compromise a user's system.

1) A boundary error within the "MMSOpen()" function (modules/access/mms/mmstu.c) in the MMS access plugin (libaccess_mms_plugin) can be exploited to cause a stack-based buffer overflow via a specially crafted MMS stream.

2) Some errors within the realrtsp access plugin (libaccess_realrtsp_plugin) when handling Real rtsp streams can be exploited to cause heap-based buffer overflows.

Successful exploitation of the vulnerabilities may allow execution of arbitrary code.

The vulnerabilities are reported in versions prior to 2.0.1.

Update to version 2.0.1.

Provided and/or discovered by:
The vendor credits Florent Hochwelker aka TaPiOn.

Original Advisory:
VLC Media Player (VideoLAN-SA-1201, VideoLAN-SA-1202):