Multiple vulnerabilities in VLC media player

Description

Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Vulnerability related to parsing compressed labels in mDNS messages can be exploited to cause denial of service;
2. Vulnerability related to parsing compressed labels in mDNS messages can be exploited to execute arbitrary code;
3. Vulnerability related to parsing the RDATA section in mDNS messages can be exploited to cause denial of service;
4. Out-of-bound read vulnerability can be exploited to cause a denial of service;
5. Vulnerability related to parsing mDNS messages in mdns_recv can be exploited to cause denial of service;
6. Vulnerability related to parsing mDNS messages can be exploited to cause denial of service;

Fiches de renseignement originales

• sb-vlc309

Exploitation

Public exploits exist for this vulnerability.

Produits associés

• VLC-media-player

Liste CVE

• CVE-2020-6071
  critical
• CVE-2020-6072
  critical
• CVE-2020-6073
  critical
• CVE-2020-6077
  critical
• CVE-2020-6078
  critical
• CVE-2020-6079
  critical

En savoir plus

Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com