This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects attempts to a remote code execution vulnerability while processing crafted MKV files through VLC Media Player application.
VLC Media Player is an application that allows users to play back various media formats.
VLC Media Player is prone to a remote code-execution vulnerability. Specifically, the issue affects the 'MKV_IS_ID' macro in the 'modules/demux/mkv/mkv.hpp' file for the MKV demuxer when processing crafted MKV files.
Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts may result in a denial-of-service condition.
This issue affects VLC Media Player versions 184.108.40.206 and prior.
- VLC Media Player versions 220.127.116.11 and prior.
Vendor has issued an update to resolve this issue. Please visit the vendor's website for further details.