VLC Media Player WAV File Exploit

Global Threat - Blogging about the Internet + Technology + Computer Security + Gadgets + Common PC issues, and reviews. *Use The Archive List To Find More Posts*

Blog For Free!

Archives
Home
2009 July
2009 March
2009 February
2009 January
2008 December
2008 November
2008 October
2008 September
2008 August
2008 July
2008 June
2008 May
2008 April
2008 March
2008 February
2008 January
2007 December
2007 November
2007 October
2007 September
2007 August
2007 May
2007 April
2007 March
2007 February
2006 November
2006 October

My Links
Certification Exams
IT Practice Tests
CD-Keys
FM Transmitter
Bluetooth Headsets
Laptop Batteries
Website Templates
$3 Ink Catridges
Free downloads
Skumora's Blog
Readon's Blog
Disclosure Policy

tBlog
My Profile
Send tMail
My tFriends
My Images


Sponsored
Blog





image 7 ss_blog_claim=1b2b88c4620f117c16008ca0037d3c1e
VLC Media Player WAV File Exploit
07.06.08 (4:27 am)   [edit]

VLC media player snapshotVLC Media Player version 0.8.6h for Windows contains a vulnerability which can be used to execute arbitrary code. This vulnerability works by exploiting the "Open()" function in modules/demux/wav.c. A hacker can use a specially crafted WAV file to exploit this function to execute their trojans, viruses, spyware, keyloggers, and whatever other kind of malware they want.

Thankfully a update is beening released, so everyone can protect themselves simply by updating to version 0.8.6i. You can download the update at their website and even download VLC media player's source code if you want to examine it.

 

posted by: Stefan Scholl (reply)
post date: 07.07.08 (1:17 am)

There's still no 0.8.6i today (2008-07-07).

Your Name:


Your Comment: