CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
94.3%
Multiple buffer overflows in the Real-Time Streaming Protocol (RTSP) client for (1) MPlayer before 1.0pre4 and (2) xine lib (xine-lib) before 1-rc4, when playing Real RTSP (realrtsp) streams, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (a) long URLs, (b) long Real server responses, or © long Real Data Transport (RDT) packets.
Vendor | Product | Version | CPE |
---|---|---|---|
mplayer | mplayer | 1.0_pre3try2 | cpe:2.3:a:mplayer:mplayer:1.0_pre3try2:*:*:*:*:*:*:* |
xine | xine-lib | 1_beta1 | cpe:2.3:a:xine:xine-lib:1_beta1:*:*:*:*:*:*:* |
xine | xine-lib | 1_beta2 | cpe:2.3:a:xine:xine-lib:1_beta2:*:*:*:*:*:*:* |
xine | xine-lib | 1_beta3 | cpe:2.3:a:xine:xine-lib:1_beta3:*:*:*:*:*:*:* |
xine | xine-lib | 1_beta4 | cpe:2.3:a:xine:xine-lib:1_beta4:*:*:*:*:*:*:* |
xine | xine-lib | 1_beta5 | cpe:2.3:a:xine:xine-lib:1_beta5:*:*:*:*:*:*:* |
xine | xine-lib | 1_beta6 | cpe:2.3:a:xine:xine-lib:1_beta6:*:*:*:*:*:*:* |
xine | xine-lib | 1_beta7 | cpe:2.3:a:xine:xine-lib:1_beta7:*:*:*:*:*:*:* |
xine | xine-lib | 1_beta8 | cpe:2.3:a:xine:xine-lib:1_beta8:*:*:*:*:*:*:* |
xine | xine-lib | 1_beta9 | cpe:2.3:a:xine:xine-lib:1_beta9:*:*:*:*:*:*:* |