1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: VLC Media Player MKV File CVE-2011-0531

Web Attack: VLC Media Player MKV File CVE-2011-0531

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to a remote code execution vulnerability while processing crafted MKV files through VLC Media Player application.

Additional Information

VLC Media Player is an application that allows users to play back various media formats.

VLC Media Player is prone to a remote code-execution vulnerability. Specifically, the issue affects the 'MKV_IS_ID' macro in the 'modules/demux/mkv/mkv.hpp' file for the MKV demuxer when processing crafted MKV files.

Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts may result in a denial-of-service condition.

This issue affects VLC Media Player versions 1.1.6.1 and prior.

Affected

  • VLC Media Player versions 1.1.6.1 and prior.

Response

Vendor has issued an update to resolve this issue. Please visit the vendor's website for further details.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube