24 matches found
Ubuntu: Security Advisory (USN-7890-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
JLSEC-2025-143 A flaw was found in FFmpeg's HLS playlist parsing
A flaw was found in FFmpeg's HLS playlist parsing. This vulnerability allows a denial of service via a maliciously crafted HLS playlist that triggers a null pointer dereference during initialization...
CVE-2010-10016
BS.Player version 2.57 build 1051 contains a vulnerability in its playlist import functionality. When processing .m3u files, the application fails to properly validate the length of playlist entries, resulting in a buffer overflow condition. This flaw occurs during parsing of long URLs embedded i...
CVE-2010-10016 BS.Player 2.57 Buffer Overflow via M3U Playlist Import
BS.Player version 2.57 build 1051 contains a vulnerability in its playlist import functionality. When processing .m3u files, the application fails to properly validate the length of playlist entries, resulting in a buffer overflow condition. This flaw occurs during parsing of long URLs embedded i...
PT-2025-35368
Name of the Vulnerable Software and Affected Versions: BS.Player version 2.57 build 1051 Description: BS.Player version 2.57 build 1051 contains a flaw in its playlist import functionality. When processing .m3u files, the application does not properly validate the length of playlist entries,...
CVE-2009-20002
Millenium MP3 Studio versions up to and including 2.0 is vulnerable to a stack-based buffer overflow when parsing .pls playlist files. The application fails to properly validate the length of the File1 field within the playlist, allowing an attacker to craft a malicious .pls file that overwrites...
CVE-2010-20123
Steinberg MyMP3Player version 3.0 build 3.0.0.67 is vulnerable to a stack-based buffer overflow when parsing .m3u playlist files. The application fails to properly validate the length of input data within the playlist, allowing a specially crafted file to overwrite critical memory structures and...
CVE-2009-20003 Xenorate <= 2.50 .xpl File Stack-Based Buffer Overflow
Xenorate versions up to and including 2.50, a Windows-based multimedia player, is vulnerable to a stack-based buffer overflow when processing .xpl playlist files. The application fails to properly validate the length of input data, allowing an attacker to craft a malicious .xpl file that overwrit...
CVE-2010-20123
Steinberg MyMP3Player version 3.0 build 3.0.0.67 is vulnerable to a stack-based buffer overflow when parsing .m3u playlist files. The application fails to properly validate the length of input data within the playlist, allowing a specially crafted file to overwrite critical memory structures and...
CVE-2010-20123 Steinberg MyMP3Player <= 3.0.0.67 Buffer Overflow
Steinberg MyMP3Player version 3.0 build 3.0.0.67 is vulnerable to a stack-based buffer overflow when parsing .m3u playlist files. The application fails to properly validate the length of input data within the playlist, allowing a specially crafted file to overwrite critical memory structures and...
CVE-2009-20002 Millenium MP3 Studio <= 2.0 .pls File Stack-Based Buffer Overflow
Millenium MP3 Studio versions up to and including 2.0 is vulnerable to a stack-based buffer overflow when parsing .pls playlist files. The application fails to properly validate the length of the File1 field within the playlist, allowing an attacker to craft a malicious .pls file that overwrites...
CVE-2009-20002
CVE-2009-20002 affects Millennium MP3 Studio versions up to 2.0. The vulnerability is a stack-based buffer overflow in the parsing of .pls playlist files, caused by inadequate validation of the File1 field length. An attacker can craft a malicious .pls file that overwrites the Structured Exceptio...
CVE-2009-20002
Millenium MP3 Studio versions up to and including 2.0 is vulnerable to a stack-based buffer overflow when parsing .pls playlist files. The application fails to properly validate the length of the File1 field within the playlist, allowing an attacker to craft a malicious .pls file that overwrites...
PT-2025-34301 · Xenorate · Xenorate
Name of the Vulnerable Software and Affected Versions: Xenorate versions up to and including 2.50 Description: Xenorate, a Windows-based multimedia player, is susceptible to a stack-based buffer overflow when processing .xpl playlist files. The application does not properly validate the length of...
PT-2020-5906 · FFmpeg +4 · Ffmpeg +4
Name of the Vulnerable Software and Affected Versions: FFmpeg versions 2.8 through 4.2.3 Description: The issue is related to a use-after-free error in the parse playlist function of the libavformat library, specifically when handling a crafted EXTINF duration in an m3u8 file. This error occurs...
Native Instruments Traktor Pro 1.2.6 Buffer Overflow
!/usr/local/bin/perl Native Instruments Traktor Pro 1.2.6 Stack-based Buffer Overflow Vulnerability Vendor: Native Instruments GmbH Product web page: http://www.native-instruments.com Affected version: 1.2.6.8491 Standalone Summary: TRAKTOR PRO is the new benchmark in DJ software. Mix digital fil...
WM Downloader buffer overflow
Buffer overflows on different playlist formats parsing...
Debian Security Advisory DSA 1683-1 (streamripper)
The remote host is missing an update to streamripper announced via advisory DSA 1683-1. OpenVAS Vulnerability Test $Id: deb16831.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1683-1 streamripper Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft In...
Debian DSA-1683-1 : streamripper - buffer overflow
Multiple buffer overflows involving HTTP header and playlist parsing have been discovered in streamripper CVE-2007-4337, CVE-2008-4829 . %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-168...
[SECURITY] [DSA 1683-1] New streamripper packages fix potential code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1683-1 [email protected] http://www.debian.org/security/ Florian Weimer December 08, 2008 http://www.debian.org/security/faq -...