When the task is complete, you’ll have full assurance that the vulnerability no longer applies. Also included is the action to entirely uninstall the software from any target devices and it’s just as easily as updating. Simply target all devices, select Patch Now, and choose the latest VLC Media Player updates. Syxsense has the innate ability to show all devices with VLC Media Player installed, as well as includes the latest VLC Media Player software updates for easy remediation. Our best recommendation, for now, would be to uninstall the software entirely until the situation is alleviated.” “So far, there still doesn’t appear to be any updates to remediate the bug, although VLC has already been made aware and are working on a patch. Vulnerabilities such as this allow not only for disruption of service and unauthorized modification, but are a catalyst for greater concerns like ransomware,” says Jon Cassell, Senior Solutions Architect at Verismic Software, Inc. The vulnerability has been detected in Windows, Linux, and Unix versions of VLC Media Player. Categorized as CVE-2019-13615, the vulnerability is rated at 9.8/10 by NIST (National Institute of Standards and Technology) and was discovered in the latest version, VLC 3.0.7.1. The latest vulnerability could put millions of users at risk, pointed-out by security researchers from German firm, CERT-Bund, and so far the software has been downloaded more than a billion times across the world. Jeli ponownie klikniesz Pomoc> Sprawd aktualizacje, zobaczysz, e masz najnowsz wersj odtwarzacza multimedialnego. The free and open-source VLC media player has a critical-severity bug that allows for RCE (remote code execution) which potentially allows attackers to install, modify, or run software without authorization.
0 kommentar(er)
