Some of Our Sources
- Team Treehouse
- You The Designer
- Naldz Graphics
- Crazy Leaf Design
- Reencoded
- Wal You
- Specky Boy
- Android Headlines
- Daily Now
- The Verge
Help Webnuz
Referal links:
October 22, 2018 02:02 am
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/2Xs76qRAhEg/mplayer-vlc-media-player-hit-by-critical-vulnerability
MPlayer, VLC Media Player Hit By Critical Vulnerability
A critical remote code execution vulnerability has been spotted in the LIVE555 media streaming library used by popular media players such as VLC and MPlayer. "Maintained by the company Live Networks, the library works with RTP / RTCP, RTSP or SIP protocols, with the ability to process video and audio formats such as MPEG, H.265, H.264, H.263 +, VP8, DV, JPEG, MPEG, AAC, AMR, AC-3, and Vorbis," reports Hackread. From the report: These findings (CVE-2018-4013) have left millions of users of media players vulnerable to cyber attacks, according to Lilith Wyatt, a researcher at the Cisco Talos Intelligence Group. In this case, the flaw lies in the HTTP packet parsing functionality, which analyzes HTTP headers for RTSP tunneling over HTTP, explains. An update has already been issued to address the vulnerability. Therefore, if you are using any of the vulnerable media players make sure they are updated to the latest version.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/2Xs76qRAhEg/mplayer-vlc-media-player-hit-by-critical-vulnerability
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot