fbpx
0
VLC security gap

The popular VLC video player application was found containing a security gap that sounded pretty scary.

According to the German cybersecurity agency CERT-Bund who discovered it, security holes in VLC can be used by hackers to take over devices without the user’s knowledge, through Remote Code Execution (RCE) techniques.

In addition, it was also mentioned that the related loopholes could be exploited by hackers to launch a cyberattack on the Distributed Denial of Service (DDoS) model.

This security gap was found on the Windows, Linux, and Unix versions of VLC, but the MacOS version was unaffected. Even more horrifying, VideoLAN is said to have not finished working on the patch to patch the dangerous hole.

Is it really that scary? The VideoLAN dismissed the CERT-Bund findings and said that the security gap was harmless and had been repaired for a long time.

VLC Security gap

About the “security issue” on #VLC : VLC is not vulnerable.
tl;dr: the issue is in a 3rd party library, called libebml, which was fixed more than 16 months ago.
VLC since version 3.0.3 has the correct version shipped, and @MITREcorpdid not even check their claim.

Thread:— VideoLAN (@videolan) July 24, 2019

“VLC’s security is not vulnerable. The problem is with third-party libraries named libebmi which was resolved 16 months ago,” said VideoLAN in a Twitter Twitter tweet.

According to VideoLAN, the necessary repairs have been applied to VLC version 3.0.3 or later.

So, as summarized by KompasTekno from PC Gamer, Friday (7/26/2019), VLC users don’t need to panic and delete their applications. Just make sure the application is up-to-date. The latest VLC application is version 3.0.7.1.

VLC itself is software that can play various multimedia files in various formats. VLC is an open-source software which presents for several operating systems.

VLC is a popular software because of the completeness of the codecs it has. Besides being complete, the size of VLC is also smaller and lighter so it is liked by many users.

Source: kompas.com


Like it? Share with your friends!

0

What's Your Reaction?

Like Like
0
Like
Smile Smile
0
Smile
Surprised Surprised
0
Surprised
Mad Mad
0
Mad
hate hate
0
hate
confused confused
0
confused
fail fail
0
fail
fun fun
0
fun
geeky geeky
0
geeky
love love
0
love
lol lol
0
lol
omg omg
0
omg
win win
0
win
Udi

Internship

One Comment

Your email address will not be published. Required fields are marked *

Choose A Format
Personality quiz
Series of questions that intends to reveal something about the personality
Trivia quiz
Series of questions with right and wrong answers that intends to check knowledge
Poll
Voting to make decisions or determine opinions
Story
Formatted Text with Embeds and Visuals
List
The Classic Internet Listicles
Countdown
The Classic Internet Countdowns
Open List
Submit your own item and vote up for the best submission
Ranked List
Upvote or downvote to decide the best list item
Meme
Upload your own images to make custom memes
Video
Youtube, Vimeo or Vine Embeds
Audio
Soundcloud or Mixcloud Embeds
Image
Photo or GIF
Gif
GIF format