Test ID:	1.3.6.1.4.1.25623.1.0.811077
Category:	Denial of Service
Title:	VLC Media Player Multiple Denial-of-Service Vulnerabilities - Windows
Summary:	VLC media player is prone to multiple denial of service (DoS) vulnerabilities.
Description:	Summary: VLC media player is prone to multiple denial of service (DoS) vulnerabilities. Vulnerability Insight: Multiple flaws exist due to an error in the 'plugins\codec\libflac_plugin.dll' and 'plugins\audio_filter\libmpgatofixed32_plugin.dll' scripts while reading a crafted file. Vulnerability Impact: Successful exploitation will allow remote attackers to remote attackers to cause a denial of service (heap corruption and application crash or invalid read and application crash) or possibly have unspecified other impact. Affected Software/OS: VideoLAN VLC media player version 2.2.4 on Windows Solution: Update to version 3.0 or above. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-9301 BugTraq ID: 98746 http://www.securityfocus.com/bid/98746 http://code610.blogspot.com/2017/04/multiple-crashes-in-vlc-224.html Common Vulnerability Exposure (CVE) ID: CVE-2017-9300 BugTraq ID: 98747 http://www.securityfocus.com/bid/98747 Debian Security Information: DSA-4045 (Google Search) https://www.debian.org/security/2017/dsa-4045
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.