13 Jul 2011
03 Aug 2011
VLC media player 1.x
This covers vulnerabilities where malicious people are able to gain system access and execute arbitrary code with the privileges of a local user.
Some vulnerabilities have been reported in VLC Media Player, which can be exploited by malicious people to compromise a user's system.
1) Missing input validation when allocating memory using certain values from a RealAudio data block within RealMedia (RM) files can be exploited to cause a heap-based buffer overflow.
2) An integer underflow error when parsing the "strf" chunk within AVI files can be exploited to cause a heap-based buffer overflow.
3) A vulnerability is caused due to the use of vulnerable ffmpeg code.
For more information:
Successful exploitation of the vulnerabilities allows execution of arbitrary code.
Vulnerabilities #1 and #2 are confirmed in version 1.1.10. Vulnerability #3 is reported in versions prior to 1.1.10 (Windows) and 1.1.11 (MacOS X). Other versions may also be affected.
Update to version 1.1.11.
1, 2) Hossein Lotfi via Secunia