Heap-based Buffer Overflow in ParseJSS in VideoLAN VLC

Heap-based Buffer Overflow in ParseJSS in VideoLAN VLC

CVE-2017-8311 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to execute arbitrary code via a crafted subtitles file.

Learn more about our Web Application Penetration Testing UK.