Remote code execution vulnerability in VLC remains unpatched
1 min read
Jul 23, 2019
Have you heard that a serious vulnerability has been discovered in the latest release of the VLC media player and no patch is available?
Non-profit VideoLAN's VLC player is popular software used to both play and convert a variety of audio and visual files. Available for Windows, Linux, Mac OS X, Unix, iOS, and Android systems, the open-source media player has now become the focus of a recent security advisory released by the German Computer Emergency Response Team (CERT-Bund).
In the advisory, CERT-Bund warns that VLC media player version 3.0.7.1, the latest build available, contains a vulnerability which has been awarded a CVSS score of 9.8 out of 10.
The link for this article located at ZDNet is no longer available.
Related Articles
1 - 0 min read
Hacked VMs Reveal New Attack Risks
1 - 0 min read
Linux xz/liblzma Utility Backdoor Risks SSH Compromise
1 - 0 min read
Multiple Chromium DoS, Info Disclosure Vulns Fixed [Updated]
