Just because this does not get talked about much and it relates to my day job I am surprised at how Security concerns in relation to videos does not get talked about often. For example it took till 2017 for certain exploits of SRT closed caption files to make it out to the Security community yet a large amount of video formats out there have the ability to execute commands while playing everything from Apple Quicktime files to WMV’s and other similar containerized formats allow for execution of commands during playback.
WMV attacks have at least been proven as POC to such an extent that Microsoft now by default turns off the function in windows media player to run scripts, unfortunately to be able to play Closed Captions and Subtitles in Windows media player you have to turn on that function.