VULNERABILITIES / FIXES - March 19, 2012
by Carol~ - 3/19/12 6:55 AM
VLC Media Player MMS and Real RTSP Vulnerabilities
Release Date : 2012-03-19
Criticality level : Highly critical
Impact : System access
Where : From remote
Solution Status : Vendor Patch
Software: VLC Media Player 2.x
Multiple vulnerabilities have been reported in VLC Media Player, which can be exploited by malicious people to compromise a user's system.
1) A boundary error within the "MMSOpen()" function (modules/access/mms/mmstu.c) in the MMS access plugin (libaccess_mms_plugin) can be exploited to cause a stack-based buffer overflow via a specially crafted MMS stream.
2) Some errors within the realrtsp access plugin (libaccess_realrtsp_plugin) when handling Real rtsp streams can be exploited to cause heap-based buffer overflows.
Successful exploitation of the vulnerabilities may allow execution of arbitrary code.
The vulnerabilities are reported in versions prior to 2.0.1.
Update to version 2.0.1.
Provided and/or discovered by:
The vendor credits Florent Hochwelker aka TaPiOn.
VLC Media Player (VideoLAN-SA-1201, VideoLAN-SA-1202):