Posted by Stefan Kanthak on Dec 09

Hi @ll,

the executable installers [°] of the videolan client (VLC, see
<http://www.videolan.org/>) are vulnerable:

1. They load and execute a rogue/bogus/malicious ShFolder.dll [‘][²]
(and other DLLs like SetupAPI.dll or UXTheme.dll too) eventually
found in the directory they are started from (the “application
directory”).

For software downloaded with a web browser this is typically the…