Summary
This host is installed with VLC Media Player and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow attackers to overflow buffer, cause denial of service.
Impact Level: Application
Solution
Upgrade to VLC media player version 2.0.8 or later, For updates refer to http://www.videolan.org/vlc
Insight
A flaw exist in mpeg4audio.c file, which to perform adequate boundary checks on user-supplied input.
Affected
VLC media player version 2.0.7 and prior on MAC OS X
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2013-4388 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 Feb14 (Linux)
- Apple Remote Desktop Information Disclosure Vulnerability
- Apple Safari Webcore Webkit 'XSSAuditor.cpp' XSS Vulnerability (Mac OS X)
- Apple Safari Webkit Multiple Vulnerabilities - May13 (Mac OS X)
- Adobe Flash Media Server Video Stream Capture Security Issue