Lucene search
K

2881 matches found

securityvulns
securityvulns
added 2004/12/30 12:0 a.m.23 views

xine-lib buffer overflows

buffer overflow in the PNM, VCD and DVD handling code...

2.8AI score
Exploits0References7Affected Software2
CVE
CVE
added 2004/12/22 5:0 a.m.56 views

CVE-2004-1300

CVE-2004-1300 affects xine-lib (libxine) 1-rc7, where a buffer overflow in demux_aiff.c:open_aiff_file allows remote attackers to execute arbitrary code via a crafted AIFF file. Multiple sources (NVD, SUSE, Gentoo GLSA, OpenVAS/Nessus references) describe the vulnerability as a buffer overflow in...

10CVSS7.5AI score0.09107EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2004/12/22 5:0 a.m.18 views

CVE-2004-1300

Buffer overflow in the openaifffile function in demuxaiff.c for xine-lib libxine 1-rc7 allows remote attackers to execute arbitrary code via a crafted AIFF file...

7.5AI score0.09107EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2004/12/22 5:0 a.m.22 views

CVE-2004-1300

Buffer overflow in the openaifffile function in demuxaiff.c for xine-lib libxine 1-rc7 allows remote attackers to execute arbitrary code via a crafted AIFF file...

10CVSS8.9AI score0.09107EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2004/12/16 12:0 a.m.11 views

Xine-Lib < 1.0-rc8 Remote Client-Side Buffer Overflow

Binary data 2459.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/10/08 12:0 a.m.30 views

Mandrake Linux Security Advisory : xine-lib (MDKSA-2004:105)

A number of string overflows were discovered in the xine-lib program, some of which can be used for remote buffer overflow exploits that lead to the execution of arbitrary code with the permissions of the user running a xine-lib-based media application. xine-lib versions 1-rc2 through, and...

7.5CVSS6.3AI score0.08374EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2004/09/23 12:0 a.m.29 views

GLSA-200409-30 : xine-lib: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200409-30 xine-lib: Multiple vulnerabilities xine-lib contains two stack-based overflows and one heap-based overflow. In the code reading VCD disc labels, the ISO disc label is copied into an unprotected stack buffer of fixed size...

7.5CVSS6.5AI score0.08374EPSS
Exploits0References6
Slackware Linux
Slackware Linux
added 2004/09/22 8:39 p.m.19 views

[slackware-security] xine-lib

New xine-lib packages are available for Slackware 10.0 and -current to fix security issues. For more details, see: http://www.xinehq.de/index.php/security/XSA-2004-4 http://www.xinehq.de/index.php/security/XSA-2004-5 Here are the details from the Slackware 10.0 ChangeLog:...

6.9AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2004/09/22 12:0 a.m.31 views

xine-lib: Multiple vulnerabilities

Background xine-lib is a multimedia library which can be utilized to create multimedia frontends. Description xine-lib contains two stack-based overflows and one heap-based overflow. In the code reading VCD disc labels, the ISO disc label is copied into an unprotected stack buffer of fixed size...

7.5CVSS4.8AI score0.08374EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/21 12:0 a.m.18 views

Xine-lib < 1.0 RC6a Heap and Stack Overflows

Binary data 2304.prm...

7.5CVSS7.3AI score0.08374EPSS
Exploits0References3
securityvulns
securityvulns
added 2004/09/17 12:0 a.m.36 views

XSA-2004-5: heap overflow in DVD subpicture decoder

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 xine security announcement ========================== Announcement-ID: XSA-2004-5 Summary: A heap overflow has been found in the DVD subpicture decoder of xine-lib. This can be used for a remote heap overflow exploit, which can, on some systems, lead ...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2004/09/17 12:0 a.m.23 views

XSA-2004-4: multiple string overflows

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 xine security announcement ========================== Announcement-ID: XSA-2004-4 Summary: Several string overflows on the stack have been fixed in xine-lib, some of them can be used for remote buffer overflow exploits leading to the execution of...

0.8AI score
Exploits0
NVD
NVD
added 2004/09/16 4:0 a.m.21 views

CVE-2004-1379

Heap-based buffer overflow in the DVD subpicture decoder in xine xine-lib 1-rc5 and earlier allows remote attackers to execute arbitrary code via a 1 DVD or 2 MPEG subpicture header where the second field reuses RLE data from the end of the first field...

7.5CVSS7.8AI score0.03995EPSS
Exploits0References8
FreeBSD
FreeBSD
added 2004/09/07 12:0 a.m.17 views

libxine -- multiple vulnerabilities in VideoCD handling

A xine security announcement states: Several string overflows on the stack have been fixed in xine-lib, some of them can be used for remote buffer overflow exploits leading to the execution of arbitrary code with the permissions of the user running a xine-lib based media application. Stack-based...

2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/08/30 12:0 a.m.30 views

GLSA-200405-24 : MPlayer, xine-lib: vulnerabilities in RTSP stream handling

The remote host is affected by the vulnerability described in GLSA-200405-24 MPlayer, xine-lib: vulnerabilities in RTSP stream handling Multiple vulnerabilities have been found and fixed in the RTSP handling code common to recent versions of these two packages. These vulnerabilities include sever...

10CVSS6.1AI score0.05116EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2004/08/30 12:0 a.m.21 views

GLSA-200408-18 : xine-lib: VCD MRL buffer overflow

The remote host is affected by the vulnerability described in GLSA-200408-18 xine-lib: VCD MRL buffer overflow xine-lib contains a bug where it is possible to overflow the vcd:// input source identifier management buffer through carefully crafted playlists. Impact : An attacker may construct a...

5.1CVSS6.5AI score0.08374EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2004/08/30 12:0 a.m.29 views

GLSA-200404-20 : Multiple vulnerabilities in xine

The remote host is affected by the vulnerability described in GLSA-200404-20 Multiple vulnerabilities in xine Several vulnerabilities were found in xine-ui and xine-lib. By opening a malicious MRL in any xine-lib based media player, an attacker can write arbitrary content to an arbitrary file, on...

5CVSS5.7AI score0.08098EPSS
Exploits1References5
securityvulns
securityvulns
added 2004/08/19 12:0 a.m.22 views

[ GLSA 200408-18 ] xine-lib: VCD MRL buffer overflow

Gentoo Linux Security Advisory GLSA 200408-18 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

1AI score
Exploits0
NVD
NVD
added 2004/08/18 4:0 a.m.20 views

CVE-2004-0433

Multiple buffer overflows in the Real-Time Streaming Protocol RTSP client for 1 MPlayer before 1.0pre4 and 2 xine lib xine-lib before 1-rc4, when playing Real RTSP realrtsp streams, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long URLs, b lo...

10CVSS7.8AI score0.05116EPSS
Exploits0References3
OSV
OSV
added 2004/08/18 4:0 a.m.11 views

CVE-2004-0433

Multiple buffer overflows in the Real-Time Streaming Protocol RTSP client for 1 MPlayer before 1.0pre4 and 2 xine lib xine-lib before 1-rc4, when playing Real RTSP realrtsp streams, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long URLs, b lo...

8.1AI score
Exploits0References3
Rows per page
Query Builder