How come such a relatively simple files - something that essentially plays media content - continues to be such a hot-bed of vulnerabilities. And not just bugs, but zero-day exploits too. Do I need a tinfoil hat? Or is it just a tad suspicious that this one product continues to have so many vulnerabilities found in it. After all this time. After all these previous bugs.
No, it's not suspicious, it's exactly what you would expect from corporate programmers in a system that wasn't designed with security in mind.
When people try to make code secure, it's difficult. When people don't even try, it's impossible.