vendor:
VLC Media Player
by:
KedAns-Dz
5.5
CVSS
MEDIUM
Denial-of-Service
CWE
Product Name: VLC Media Player
Affected Version From: 1.0.5
Affected Version To: 1.0.5
Patch Exists: NO
Related CWE:
CPE: a:videolan:vlc_media_player:1.0.5
Platforms Tested: Windows
Unknown
VLC media player v1.0.5 (.ape) Local Crash PoC
This exploit allows attackers to crash the VLC Media Player application, denying service to legitimate users. The exploit involves creating a specially crafted APE file and opening it with VLC Media Player 1.0.5, causing the application to crash.
Mitigation:
Update to a patched version of VLC Media Player.