input.c in VideoLAN VLC Media Player before 0.8.6c allows remote attackers to cause a denial of service (crash) via a crafted WAV file that causes an uninitialized i_nb_resamplers variable to be used.
Exploitability
AV:NAC:LAu:NImpact
C:NI:NA:C7.8/AV:N/AC:L/Au:N/C:N/I:N/A:C