Buffer overflow vulnerability was found in VLC media player. By exploiting this vulnerability malicious users can cause a denial of service (crash). This vulnerability can be exploited remotely via a crafted wav file.

Technical details

This vulnerability is in the AStreamPeekStream function in input/stream.c and related to “seek across EOF” functionality.

VideoLAN VLC media player versions earlier 2.2.0

Update to the latest version
Download page with latest version of VLC media player