The web interface in VideoLAN VLC media player prior to 2.0.7 has no access control which allows remote malicious users to view directory listings via the 'dir' command or issue other commands without authenticating.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
videolan vlc media player |