E19-5p751
CVSS:
9.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
False Positive:
f
Variants:
1
Year:
2018
Description
This strike exploits a use-before-initialization vulnerability in VLC Media Player.
The vulnerability arises when a memory allocation fails due to a large enough 'ChunkSize' flag, thus leaving the 'p_peek' pointer unintialized.
By exploiting this, an attacker could cause information leaks on the target system.