CVE-2011-0531

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

SecuriTeam™
Beyond Security®

SecuriTeam™ Home
Ask the Team
Mailing Lists
Advertising Info
Blogs

	SecuriTeam™ in Your Inbox

	E-mail this CVE-2011-0531 to a friend

New vulnerability?
New tool?
Tell us

Credit:
The information has been provided by Dan Rosenberg.

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2011-0531

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Vulnerable Systems:
* VLC media player 1.1.6.1 and earlier

The user should refrain from opening files from untrusted third parties or accessing untrusted remote sites (or disable the VLC browser plugins), until the patch is applied.
Alternatively, the MKV demuxer plugin (libmkv_plugin.*) can be removed manually from the VLC plugin installation directory.

Vendor Status:
VideoLAN had issued an update for this vulnerability

Patch Availability:
http://www.videolan.org/security/sa1102.html

CVE Information:
CVE-2011-0531

Disclosure Timeline:
26 January 2011
Vendor notified

29 January 2011
Fixes delivered by Matroska

30 January 2011
Patches published
Security advisory published

31 January 2011
VLC media player 1.1.7 source released

1 February 2011
VLC media player 1.1.7 binaries released

7 February 2011
CVE ID released CVE-2011-0531

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus