Denial of Service Vulnerability in VLC Media Player's ASF Demuxer

Denial of Service Vulnerability in VLC Media Player's ASF Demuxer

CVE-2014-1684 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The ASF_ReadObject_file_properties function in modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media Player before 2.1.3 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a zero minimum and maximum data packet size in an ASF file.

Learn more about our Web Application Penetration Testing UK.