VideoLAN VLC is an open source cross-platform multimedia player and framework that can play most multimedia files, as well as DVDs, audio CDs, VCDs, and various streaming protocols. a buffer overflow vulnerability exists in the AVI_ExtractSubtitle component of VideoLAN VLC version 3.0.11, which can be exploited by attackers via specially crafted .avi files to cause out-of-bounds reads.