The SHAddToRecentDocs function in VideoLAN VLC media player 2.0.4 and previous versions might allow user-assisted malicious users to cause a denial of service (crash) via a crafted file name that triggers an incorrect string-length calculation when the file is added to VLC. NOTE: it is not clear whether this issue crosses privilege boundaries or whether it can be exploited without user interaction.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
videolan vlc media player 2.0.0 |
||
videolan vlc media player 2.0.1 |
||
videolan vlc media player 2.0.3 |
||
videolan vlc media player 2.0.2 |
||
videolan vlc media player |