Uninstall VLC: Critical security bug plagues media player
If you use VLC for binging shows on your computer, uninstall it immediately. A group of security researchers has discovered a critical flaw in the media player, one that hackers can use to hijack your PC. The issue is yet to be patched by the company behind the player, which means uninstalling it is the only way to deal with the situation. Here's more.
Remote code execution vulnerability flagged
VLC dominates as one of the most famous open-source media players in the world - free and easy-to-use. However, the folks at German security agency CERT-Bund noted that the player also carries a vulnerability that can allow for remote code execution (RCE). They gave the issue, dubbed CVE-2019-13615, a score of 9.8, classifying it as a critical threat.
How hackers can use this to hijack PCs?
The bug in question can be leveraged by malicious actors to execute code remotely on a targeted PC. With this, they could install, modify, or run a program on the computer and take full access to the data present in it. Meaning, the software can put all your personal data into the hands of hackers exploiting this vulnerability.
Thankfully, no exploits reported yet
While the vulnerability is dangerous, no report says that it has actually been exploited to hijack a PC. However, no attack doesn't mean the problem has been averted. WinFuture reports that the Windows, Linux, and Unix version of VLC (not MacOS) carry the bug, which means a number of PCs still remain at the risk of being hijacked.
VideoLAN is working on a patch, release timeline unclear
The folks at VideoLAN, the company behind VLC, have acknowledged the bug and are working on a fix to tackle the issue. However, the thing is, the patch is only 60% complete and there is no word on when it would be released. Now, this leaves no other option but to remove VLC and install some other music player available for your OS.
