Kaspersky Threats

KLA11759
Multiple vulnerabilities in VLC media player

Обновлено: 29/05/2020

Дата обнаружения	29/04/2020
Уровень угрозы	Warning
Описание	Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: Vulnerability related to parsing compressed labels in mDNS messages can be exploited to cause denial of service; Vulnerability related to parsing compressed labels in mDNS messages can be exploited to execute arbitrary code; Vulnerability related to parsing the RDATA section in mDNS messages can be exploited to cause denial of service; Out-of-bound read vulnerability can be exploited to cause a denial of service; Vulnerability related to parsing mDNS messages in mdns_recv can be exploited to cause denial of service; Vulnerability related to parsing mDNS messages can be exploited to cause denial of service;
Пораженные продукты	VLC media player version 3.0.0 to 3.0.8
Решение	Update to the latest version Download VLC media player
Первичный источник обнаружения	sb-vlc309
Оказываемое влияние ?	ACE [?] DoS [?]
Связанные продукты	VLC media player
CVE-IDS	CVE-2020-60710.0Unknown CVE-2020-60720.0Unknown CVE-2020-60730.0Unknown CVE-2020-60770.0Unknown CVE-2020-60780.0Unknown CVE-2020-60790.0Unknown