VideoLAN VLC Media Player SMB Module Win32AddConnection Buffer Overflow

Added: 09/11/2009
CVE: CVE-2009-2484
BID: 35500
OSVDB: 55509

Background

VLC media player is a media player supporting various audio and video formats for multiple platforms.

Problem

A stack-based buffer overflow vulnerability in the Win32AddConnection function may allow a remote attacker to execute arbitrary commands on Windows systems when a user opens a playlist file with a long smb URI (smb://).

Resolution

Apply the GIT repository patch or upgrade to a VLC media player higher than 1.0.1 when it becomes available.

References

http://www.securityfocus.com/bid/35500

Limitations

Exploit works on Windows XP SP3 English with DEP enabled.

It may take longer than usual to establish the connection after successful exploitation.

Platforms

Windows

Back to exploit index