Main Vulnerability Database Exploits ID:353 - Exploit for Buffer overflow in VLC Media Player - CVE-2016-5108

ID:353 - Exploit for Buffer overflow in VLC Media Player - CVE-2016-5108

Published: March 18, 2020

Vulnerability identifier: #VU23

Vulnerability risk: High

CVE-ID: CVE-2016-5108

CWE-ID: CWE-119

Exploitation vector: Remote access

Vulnerable software:
VLC Media Player

Link to public exploit:

https://www.exploit-db.com/exploits/41025/

Vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to boundary error within the DecodeAdpcmImaQT() function in modules/codec/adpcm.c when processing QuickTime IMA Files. A remote attacker can trick the victim into opening a specially crafted media file, trigger memory corruption and execute arbitrary code on the system.

Remediation

Install update from vendor's website.

ID:353 - Exploit for Buffer overflow in VLC Media Player - CVE-2016-5108

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human