VideoLAN VLC Media Player PNG Code Execution (CVE-2012-5470)

A buffer overread vulnerability has been reported in VideoLAN VLC Media Player...

VLC Media Player 读访问冲突任意代码执行漏洞(CVE-2012-5470)

CVE ID:CVE-2012-5470 VideoLAN VLC media player是一款媒体播放程序。 VideoLAN VLC媒体播放器libpngplugin插件存在安全漏洞，允许攻击者构建特制的PNG文件，诱使用户解析，可使应用程序崩溃。 0 VLC media player 2.0.3 厂商解决方案 VideoLAN VLC media player 2.0.4已经修复此漏洞，建议用户下载使用： http://www.videolan.org/vlc/releases/2.0.4.html...

CVE-2012-5470

libpngplugin in VideoLAN VLC media player 2.0.3 allows remote attackers to cause a denial of service application crash via a crafted PNG file...

CVE-2012-5470

CVE-2012-5470 affects VLC Media Player via its libpng_plugin. A crafted PNG file can trigger a denial of service (application crash) in VLC before version 2.0.4 due to an input-validation issue in the PNG handling code. Reported by multiple sources, the vulnerability base score is 4.3 (MEDIUM) wi...

CVE-2012-5470

libpngplugin in VideoLAN VLC media player 2.0.3 allows remote attackers to cause a denial of service application crash via a crafted PNG file...