Specialists from Check Point Software found that video players have a serious vulnerability that hackers can use to gain control over devices. It's about files with subtitles to movies.
The problem concerns four popular players, VLC, Kodi (XMB), Popcorn Time and Stremio. The total number of users of players is about 200 000 000 people. Hackers can create malware, attach them to subtitles, distribute them on the network, and then gain full control over computers. Check Point Software claims that subtitles are a very attractive target for villains, since their system of deliveries uses more than 25 different formats with different functions, this system generally has poor security, and numerous vulnerabilities can be exploited by intruders. Moreover, infected subtitles can be created automatically and loaded into the players even bypassing antiviruses. By the way, Check Point Software has already sent out information to the developers of the players and they have already patched the holes. The case for small – download an update to your player.