KLA11759
Multiple vulnerabilities in VLC media player
Обновлено: 29/05/2020
Дата обнаружения
29/04/2020
Уровень угрозы
Warning
Описание

Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. Vulnerability related to parsing compressed labels in mDNS messages can be exploited to cause denial of service;
  2. Vulnerability related to parsing compressed labels in mDNS messages can be exploited to execute arbitrary code;
  3. Vulnerability related to parsing the RDATA section in mDNS messages can be exploited to cause denial of service;
  4. Out-of-bound read vulnerability can be exploited to cause a denial of service;
  5. Vulnerability related to parsing mDNS messages in mdns_recv can be exploited to cause denial of service;
  6. Vulnerability related to parsing mDNS messages can be exploited to cause denial of service;
Пораженные продукты

VLC media player version 3.0.0 to 3.0.8

Решение

Update to the latest version
Download VLC media player

Первичный источник обнаружения
sb-vlc309
Оказываемое влияние
?
ACE 
[?]

DoS 
[?]
Связанные продукты
VLC media player
CVE-IDS
CVE-2020-60710.0Unknown
CVE-2020-60720.0Unknown
CVE-2020-60730.0Unknown
CVE-2020-60770.0Unknown
CVE-2020-60780.0Unknown
CVE-2020-60790.0Unknown