14 DAY TRIAL // VideoLAN accused Secunia of being dishonest in a Twitter message pointing to a report showing software vulnerabilities results collected by Personal Software Inspector (PSI) in Q1 2013 from US PC users’ devices.
The vulnerability management company mentioned VLC as being “one of many popular programs with vulnerabilities.”
However, the video player is not listed among the most exposed programs in the US, which led to VideoLAN’s reply that the Danish company was “dishonest and wrong.”
In turn, Secunia defended itself by saying that the VLC mention was because of the application’s significant market share and users not applying the security patches issued by the developer.
It looks like the entire Twitter exchange was sparked by Secunia mistakenly publishing the wrong report link, which should have been for the UK report, where VLC ranks sixth in the top 10 most exposed programs, with 49% of unpatched copies. According to the report VLC has a market share of 31% among PSI users in the UK.
Secunia also mentions that over the past year they found 23 vulnerabilities for VideoLan’s product.
