Skip to main content
Customer Support Customer Support

VLC Media Player 3.0.11 fixes severe remote code execution flaw

  • June 16, 2020
  • 2 replies
  • 26 views
Jasper_The_Rasper
Moderator
Forum|alt.badge.img+54

June 16,  2020 By Lawrence Abrams

 

VLC

VideoLan has released VLC Media Player 3.0.11, and it is now available for Windows, Mac, and Linux. In addition to bug fixes and improvements, this release also fixes a security vulnerability that could allow attackers to remotely execute commands or crash VLC on a vulnerable computer.

This vulnerability is tracked as CVE-2020-13428 and is a "buffer overflow in VLC's H26X packetizer" that would allow attackers to execute commands under the same security level as the user if properly exploited.

 

Full Article.

    Jasper_The_Rasper
    Ssherjj
    TripleHelix

    2 replies

    TripleHelix
    Moderator
    Forum|alt.badge.img+63
    • TripleHelix
    • Moderator
    • June 16, 2020

    Awesome I just updated!

     

    Thanks,

    Daniel - Microsoft MVP Consumer Security (2012-2016) Windows 10 Pro x64 for Workstations 22H2 on my Alienware 17R2 and Windows 11 Pro x64 for Workstations on my Alienware 17R5 Laptops with Webroot SecureAnywhere Complete Beta Tester for PC & Android Samsung Galaxy A16 5G OS 16.
    Jasper_The_Rasper
    Jasper_The_Rasper
    Moderator
    Forum|alt.badge.img+54

    So have I Daniel.

    TripleHelix
    Terms & ConditionsAccessibility statement