KLA11023Multiple vulnerabilities in VideoLAN VLC Media Player

2017-05-23T00:00:00
ID KLA11023
Type kaspersky
Reporter Kaspersky Lab
Modified 2019-03-07T00:00:00

Description

Detect date:

05/23/2017

Severity:

High

Description:

Multiple serious vulnerabilities have been found in VideoLAN VLC Media Player. Malicious users can exploit these vulnerabilities to cause a denial of service or execute arbitrary code.

Affected products:

VideoLAN VLC Media Player earlier than 2.2.5

Solution:

Update to the latest version
Download VLC media player

Original advisories:

git.videolan.org CVE-2017-8312 confirm
git.videolan.org CVE-2017-8311 confirm
git.videolan.org CVE-2017-8313 confirm
git.videolan.org CVE-2017-8310 confirm

Impacts:

ACE

Related products:

VLC media player

CVE-IDS:

CVE-2017-83104.3High
CVE-2017-83116.8High
CVE-2017-83124.3High
CVE-2017-83134.3High