This host is installed with VLC Media Player and is prone to denial of service vulnerability.

Successful exploitation will allow attackers to crash the affected application and denying service to legitimate users. Impact Level: Application

Upgrade to VLC media player 2.0.4 or later, For updates refer to http://www.videolan.org/vlc/

The flaw is due to an error in 'libpng_plugin' when handling a crafted PNG file. Which can be exploited to cause a crash.

VLC media player version 2.0.3 and prior on Mac OS X

• http://openwall.com/lists/oss-security/2012/10/24/3
• http://osvdb.org/86685
• http://www.exploit-db.com/exploits/21889/
• http://www.videolan.org/vlc/releases/2.0.4.html

---

Updated on 2015-03-25