Rewterz Threat Advisory – Multiple vulnerabilities fixed in VLC media player

Rewterz Threat ALert – MyKings Variant With Bootloader Persistence

August 21, 2019

Rewterz Threat Alert – Adwind Bypasses Microsoft ATP to Attack Utilities Industry

August 22, 2019

Rewterz Threat Advisory – Multiple vulnerabilities fixed in VLC media player

Severity

High

Analysis Summary

CVE-2019-13602, CVE-2019-13962, CVE-2019-14437, CVE-2019-14438, CVE-2019-14498, CVE-2019-14533, CVE-2019-14534, CVE-2019-14535, CVE-2019-14776, CVE-2019-14777, CVE-2019-14778, CVE-2019-14970

A remote user could create a specifically crafted file that could trigger issues ranging from buffer overflows to division by zero. If successful, a malicious third party could trigger either a crash of VLC or an arbitratry code execution with the privileges of the target user.

While these issues in themselves are most likely to just crash the player, we can’t exclude that they could be combined to leak user information or remotely execute code. ASLR and DEP help reduce the likelyness of code execution, but may be bypassed.

Impact

Privilege access
Arbitrary code execution

Affected Vendors

VLC

Affected Products

VLC media player 3.0.7.1 and earlier

Remediation

Update to version 3.0.8 .

Rewterz Threat ALert – MyKings Variant With Bootloader Persistence

Rewterz Threat Alert – Adwind Bypasses Microsoft ATP to Attack Utilities Industry

Rewterz Threat Advisory – Multiple vulnerabilities fixed in VLC media player

Severity

Analysis Summary

Impact

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan