VLC Subtitle vulnerability

New VLC Subtitle vulnerability can hack your Device while watching a movie – Update Now!

Imagine that you’r watching your favorite night movie and suddenly, you find that you are hacked, your Device is out of control and you can’t do anything, that’s what a dangerous VLC Subtitle vulnerability can do to your pc!

A new vulnerability discovered in four media player softwares starting the famous VLC can cause your pc/mobile/smart tv to be hacked through a malicious code inserted in subtitle files ( SRT/SUB )

VLC Subtitle vulnerability

Researchers at “check point” security discovered a new bug in media players that can be dangerous to millions of devices around the world, it can spread to many connected devices through infected subtitle file.

There Are four famous softwares infected and can give the attacker full remote access to your device, the malicious code can be read by the media player before showing subtitle.

The four vulnerable media players are:

  • VLC — Popular VideoLAN
  • Kodi (XBMC) — Open-Source
  • Popcorn Time — Watching online shows
  • Stremio — Video streaming service and there is many tv series included

If your software processed the malicious code inserted in subtitle file, the hacker can grant full access to your files, data, apps as seen in the next video.

The video demonstrated the same VLC Subtitle vulnerability with Kodi (XBMC) player and you will see in the right side of screen, the attacker using Kali Linux, and gained full control one the user insert subtitle file.

How to protect your device

credits: thehackernews

Thankfully, check point team have sent all information about the vulnerability to the four companies and they all released patched version to their software’s.

You should update media players through the official site and be sure to upgrade vlc to VLC 2.2.5 or above and update to Stremi 4.0 .

Related Posts

Leave a Reply

Your email address will not be published. Required fields are marked *