CVE-2010-1445

Name of the Vulnerable Software and Affected Versions VideoLAN VLC versions prior to 1.0.6

Description The issue is related to a heap-based buffer overflow in the VideoLAN VLC media player. This allows remote attackers to cause a denial of service, resulting in the application crashing, or possibly execute arbitrary code. The exploitation occurs through a crafted byte stream in an RTMP session.

Recommendations For versions prior to 1.0.6, update to version 1.0.6 or later to resolve the issue. As a temporary workaround, consider restricting access to RTMP sessions until the update is applied.