VLC is said to be once again vulnerable to remote-code execution – meaning a malicious video opened by the software could potentially crash the media player, or joyride it to run malware on the host machine. However, the application’s developers have disputed this claim, and say it is not possible to exploit the programming blunder.
Read full article on The Register