Launchpad.net

CVE 2010-3276

libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an NSV file.

See the CVE page on Mitre.org for more details.