235 matches found
Debian: Security Advisory (DSA-1332-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 8 Update: xine-lib-1.1.9.1-1.fc8
This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...
VideoLAN VLC Media Player 0.86 < 0.86d - ActiveX Remote Bad Pointer Initialization
var mm = null; if target != null var param1 = unescape"%u0505%u0505"; var salame = "defaultV"; var salame2 = 1; var salame3 = 0; ag = unescape"%uCCCC%uCCCC"; sh = unescape"%u9090%u9090%u9090%u9090%u9090%u9090%u9090%u90...
VLC media player: Format string vulnerabilities
Background VLC media player is a multimedia player for various audio and video formats. Description David Thiel from iSEC Partners Inc. discovered format string errors in various plugins when parsing data. The affected plugins include Vorbis, Theora, CDDA and SAP. Impact A remote attacker could...
DSA-1332-1 vlc
Bulletin has no description...
XMMS multimedia player multiple integer overflows
Multiple integer overflows on different multimedia file formats parsing...
Debian DSA-1252-1 : vlc - format string
Kevin Finisterre discovered several format string problems in vlc, a multimedia player and streamer, that could lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...
VLC media player: Format string vulnerability
Background VLC media player is a multimedia player for various audio and video formats. Description Kevin Finisterre has discovered that when handling media locations, various functions throughout VLC media player make improper use of format strings. Impact An attacker could entice a user to open...
xine-ui: Format string vulnerabilities
Background xine-ui is a skin-based user interface for xine. xine is a free multimedia player. It plays CDs, DVDs, and VCDs, and can also decode other common multimedia formats. Description Due to the improper handling and use of format strings, the errorscreatewindow function in errors.c does not...
MOAB-02-01-2007: VLC Media Player udp:// Format String Vulnerability
Summary The following description of the software is provided by vendor VideoLAN: VideoLAN is a software project, which produces free software for video, released under the GNU General Public License. The main product is the cross-platform VLC media player. The VLC media player is a highly portab...
xine-lib: Buffer overflow vulnerability
Background xine-lib is the xine core engine. xine is a free multimedia player. It plays CDs, DVDs, and VCDs, and can also decode other common multimedia formats. Description Federico L. Bossi Bonin discovered that when handling MPEG streams xine-lib fails to make a proper boundary check of the...
RealPlayer, Helix Player: Format string vulnerability
Background RealPlayer is a multimedia player capable of handling multiple multimedia file formats. Helix Player is an open source media player for Linux. Description "c0ntex" reported that RealPlayer and Helix Player suffer from a heap overflow. Impact By enticing a user to play a specially craft...
Rhapsody vidplin.dll AVI Processing Heap Overflow Vulnerability
The remote installation of Rhapsody has a heap overflow in the 'vidplin.dll' file used to process AVI files. With a specially- crafted AVI file, an attacker can exploit this flaw to cause arbitrary code to be run within the context of the affected application when a user opens the file. C Tenable...
iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler PNA_TAG Heap Overflow Vulnerability
Multiple Vendor Xine version 0.99.2 PNM Handler PNATAG Heap Overflow Vulnerability iDEFENSE Security Advisory 12.21.04 www.idefense.com/application/poi/display?id=176&type=vulnerabilities December 21, 2004 I. BACKGROUND Xine is a multimedia player which runs on multiple platforms. More informatio...
xinebug.txt
Product: xine-bugreport/xine-check scripts. http://xinehq.de/ Versions: xine-bugreport && xine-check they are the same script, but 2 copies exist in a system with different names Bug: Symlink bug / tmpfile bug. Impact: Attacker's can write to arbitrary files, corrupt sensitive system files, and i...