libpng_plugin in VideoLAN VLC media player 2.0.3 allows remote malicious users to cause a denial of service (application crash) via a crafted PNG file.
#!/usr/bin/perl
# VLC Player 203 <= ReadAV Arbitrary Code Execution
# Author: Jean Pascal Pereira <pereira@secbizde>
# Vendor URI: wwwvideolanorg/vlc/
# Vendor Description:
# VLC is a free and open source cross-platform multimedia player
# and framework that plays most multimedia files as well as DVD,
# Audio CD, VCD, a ...