112 matches found
Design/Logic Flaw
MPlayer, possibly 1.0rc1, allows remote attackers to cause a denial of service SIGSEGV and application crash via 1 a malformed MP3 file, as demonstrated by lol-mplayer.mp3; 2 a malformed Ogg Vorbis file, as demonstrated by lol-mplayer.ogg; 3 a malformed MPEG-1 file, as demonstrated by...
Gentoo Security Advisory GLSA 200803-16 (mplayer)
The remote host is missing updates announced in advisory GLSA 200803-16. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200802-12 (xine-lib)
The remote host is missing updates announced in advisory GLSA 200802-12. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200803-16 (mplayer)
The remote host is missing updates announced in advisory GLSA 200803-16. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1536-1 (xine-lib)
The remote host is missing an update to xine-lib announced via advisory DSA 1536-1. OpenVAS Vulnerability Test $Id: deb15361.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1536-1 xine-lib Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Debian DSA-1536-1 : libxine - several vulnerabilities
Several local vulnerabilities have been discovered in Xine, a media player library, allowed for a denial of service or arbitrary code execution, which could be exploited through viewing malicious content. The Common Vulnerabilities and Exposures project identifies the following problems : -...
[SECURITY] [DSA 1536-1] New libxine packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1536-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst March 31, 2008 http://www.debian.org/security/faq -...
[ MDVSA-2008:046 ] - Updated xine-lib package fixes arbitrary code execution vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2008:046 http://www.mandriva.com/security/ Package : xine-lib Date : February 15, 2008 Affected: 2007.1, 2008.0 Problem Description: An array index vulnerability found in the FLAC audio demuxer might allow remote...
Debian Security Advisory DSA 1496-1 (mplayer)
The remote host is missing an update to mplayer announced via advisory DSA 1496-1. OpenVAS Vulnerability Test $Id: deb14961.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1496-1 mplayer Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Debian: Security Advisory (DSA-1496-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1496-1 : mplayer - buffer overflows
Several buffer overflows have been discovered in the MPlayer movie player, which might lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0485 Felipe Manzano and Anibal Sacco discovered a buffer overflow in the...
MPlayer demux_audio.c远程栈溢出漏洞
BUGTRAQ ID: 27441 CVECAN ID: CVE-2008-0486 MPlayer是一款基于Linux的媒体播放程序,支持多种媒体格式。 MPlayer的libmpdemux/demuxaudio.c文件在解析FLAC标注时存在栈溢出漏洞: /----------- libmpdemux/demuxaudio.c 206 case FLACVORBISCOMMENT: 207 208 / For a description of the format please have a look at / 209 /...
[SECURITY] [DSA 1496-1] New mplayer packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1496-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 12, 2008 http://www.debian.org/security/faq -...
DSA-1496-1 mplayer - arbitrary code execution
Bulletin has no description...
CVE-2008-0486
Array index vulnerability in libmpdemux/demuxaudio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow...
CVE-2008-0486
Array index vulnerability in libmpdemux/demuxaudio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow...
CVE-2008-0486
Summary (CVE-2008-0486): An array index vulnerability in the FLAC tag handling of MPlayer’s demuxer (libmpdemux/demux_audio.c) could allow remote code execution via a crafted FLAC tag. Affected: MPlayer 1.0rc2 and SVN builds prior to r25917, and, due to code similarity, some xine-lib integrations...
CVE-2007-0486
Openads (aka phpAdsNew) 2.0.7 contains multiple PHP remote file inclusion vulnerabilities that allow remote attackers to execute arbitrary PHP code. The affected vectors are: (1) the phpAds_geoPlugin parameter to libraries/lib-remotehost.inc, (2) the filename parameter to admin/report-index, and ...
CentOS 3 / 4 : mailman (CESA-2006:0486)
An updated mailman package that fixes a denial of service flaw is now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mailman is software to help manage email discussion lists. A flaw was found in...
CVE-2006-0486
CVE-2006-0486 affects Cisco IOS releases, specifically 12.2S trains (MR 25+), 12.3T, and 12.4, where a Tcl Shell process can be reused across login sessions for different local users if tclquit isn’t issued. This could allow subsequent users to run unintended commands or bypass AAA checks. The is...