Intrusion PreventionVideoLAN.VLC.ID3v2.Flags.DoS
Description
This indicates an attack attempt against a denial-of-service vulnerability in
VideoLan VLC.
The vulnerability is caused by an error when the vulnerable software handles a malicious ID3v2 tag. It allows a remote attacker to cause a denial of service via sending a crafted media file.
Affected Products
VideoLAN VLC older than 1.1.3
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Upgrade to the latest version, available from the vendor's website:
http://www.videolan.org/vlc/
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2023-08-01 | 25.612 | Name:VideoLan. VLC. ID3v2. Flags. DoS:VideoLAN. VLC. ID3v2. Flags. DoS |
| 2021-01-11 | 16.995 |
References
http://www.videolan.org/security/sa1004.html| ID | 24124 |
| Created | Aug 19, 2010 |
| Updated | Jul 31, 2023 |
| Risk |
|
| CVE ID | CVE-2010-2937 |
| Exploit Prediction Score | 2.28% |
| Default Action | drop |
| Active | |
| Affected OS | Windows, Linux |
| Affected App | Other |