VLC Media Player users this one’s for you. For maybe you are unaware about how risky your few minutes of enjoyment can be?? According to German security agency CERT there is a serious and jeopardizing security issue with the latest VLC version. It has issued a warning to all VLC Media Player regarding the matter. The latest version of VLC Media Player holds certain flaws and loops that makes a player vulnerable to hackers, who can crash your app or run parallel hidden codes on your system! Its all up to them to decide how to use your system, once they gatecrash in!
Act, don’t react!
Source: Original Soft
VLC Media Player: New version is not safe!
As stated in the warning the agency has discovered some serious security issue in the latest version of VLC Media Player. The problem cum flaw is marked as critical along with level 4 risk assessment as High. It clarified for the users that 3.0.7.1 version of VLC on Windows, UNIX and Linux platforms are most exposed to the flaws.
There's a critical security flaw in VLC media player https://t.co/KUy17QUxyf pic.twitter.com/zvaaZjCHOY
— PC Gamer (@pcgamer) July 24, 2019
Thus indicating that macOS users can take a deep breath and relax! For they are safe and away from all the mess. CERT dubbed the issue as CVE-2019-13615 and even reported the code-name to the general public.
VLC Media Player Hit by Critical Security Flaw, Fix Underwayhttps://t.co/1l0gTuoxf2
— Gadgets 360 (@Gadgets360) July 24, 2019
However, the flaw appears to be undetected by hackers. For no current exploits have been reported in real life. The lapse in total control allow hackers to run arbitrary code on the players system without their knowledge.
Moreover, they can send you a video file which can easily crash your entire system as well as run hidden codes on it.
German security agency CERT – Bund has just issued a warning to almost all #VLC media player users.https://t.co/irDGKE4IxJ
— BGR India (@BGRIndia) July 24, 2019
What does VideoLAN says about the flaws?
VideoLAN takes a stand about the matter
Source: Wikimedia Commons
Certain online reports have advised users to uninstall the program for the time being. Looking for alternatives is also suggested by people. The issue has been acknowledged by VideoLAN as well. They have accepted its existence and informed the massed that they are working to fix it.
Hey @MITREcorp and @CVEnew , the fact that you NEVER ever contact us for VLC vulnerabilities for years before publishing is really not cool; but at least you could check your info or check yourself before sending 9.8 CVSS vulnerability publicly…
— VideoLAN (@videolan) July 23, 2019
VideoLAN, the company behind VLC Media Player expressed their views regarding the matter through a tweet. The tweet starkly says that the company is not happy about the bad publicity of their product, VLC Media Player without prior information.
So, when @certbund decided to do their "disclosure", all the media jumped in, without checking anything nor contacting us.
— VideoLAN (@videolan) July 24, 2019
They even said that the error is not as major as depicted by certain reports. Therefore unnecessary panicking should be avoided.
and then, of course, @Gizmodo decided to play the clickbaiting of "Uninstall VLC now, or you are all going to die". Of course, @Gizmodo did not contact at all to check their info.
And then, we got hundreds of article about VLC insecurity.— VideoLAN (@videolan) July 24, 2019
For more updates and information stay tuned to BlockToro.
Posted first on https://www.blocktoro.com/
No comments:
Post a Comment