5 matches found
Debian Security Advisory DSA 863-1 (xine-lib)
The remote host is missing an update to xine-lib announced via advisory DSA 863-1. Ulf Härnhammar from the Debian Security Audit Project discovered a format string vulnerability in the CDDB processing component of xine-lib, the xine video/media player library, that could lead to the execution of...
FreeBSD : libxine -- format string vulnerability (3bc5691e-38dd-11da-92f5-020039488e34)
Gentoo Linux Security Advisory reports : Ulf Harnhammar discovered a format string bug in the routines handling CDDB server response contents. An attacker could submit malicious information about an audio CD to a public CDDB server or impersonate a public CDDB server. When the victim plays this C...
CVE-2005-2967
CVE-2005-2967 is a format-string vulnerability in xine-lib’s CDDB processing. The flaw exists in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 through 1.0.2, and 1.1.1, allowing a remote attacker to execute arbitrary code via specially crafted CDDB responses when a CD is played. The issue is tied t...
[SECURITY] [DSA 863-1] New xine-lib packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 863-1 [email protected] http://www.debian.org/security/ Martin Schulze October 12th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 863-1] New xine-lib packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 863-1 [email protected] http://www.debian.org/security/ Martin Schulze October 12th, 2005 http://www.debian.org/security/faq -...