Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseSUSE-SA:2007:013
HistoryJan 23, 2007 - 12:13 p.m.

remote code execution in xine-ui,xine-lib,xine-extra,xine-devel

2007-01-2312:13:50
lists.opensuse.org
6

0.951 High

EPSS

Percentile

99.1%

JSON

This update fixes several format string bugs that can be exploited remotely with user-assistance to execute arbitrary code. Since SUSE Linux version 10.1 format string bugs are not exploitable anymore. (CVE-2007-0017)

Solution

No temporary work-around known.

OSVersionArchitecturePackageVersionFilename
openSUSE10.2x86_64xine-extra< 1.1.2-40.1xine-extra-1.1.2-40.1.x86_64.rpm
openSUSE10.1x86_64xine-ui< 0.99.4-32.14xine-ui-0.99.4-32.14.x86_64.rpm
SUSE Linux Enterprise SDK10x86_64xine-ui< 0.99.4-32.14xine-ui-0.99.4-32.14.x86_64.rpm
SUSE Linux Enterprise SDK10ia64xine-lib< 1.1.1-24.17xine-lib-1.1.1-24.17.ia64.rpm
openSUSE10.0ppcxine-extra< 1.1.0-0.1xine-extra-1.1.0-0.1.ppc.rpm
openSUSE10.0x86_64xine-ui< 0.99.4-84.1xine-ui-0.99.4-84.1.x86_64.rpm
openSUSE9.3i586xine-ui< 1.0-10.14xine-ui-1.0-10.14.i586.rpm
SUSE Linux Enterprise SDK10ia64xine-extra< 1.1.1-24.17xine-extra-1.1.1-24.17.ia64.rpm
openSUSE10.0x86_64xine-lib< 1.1.0-0.1xine-lib-1.1.0-0.1.x86_64.rpm
openSUSE10.2i586xine-devel< 1.1.2-40.1xine-devel-1.1.2-40.1.i586.rpm
Rows per page:
1-10 of 561

Related

prion 2
cve 2
openvas 7
nessus 8
osv 1
checkpoint_advisories 1
debian 1
packetstorm 2
ubuntucve 2
gentoo 1
debiancve 1
securityvulns 1
prion
prion
Format string
2007-01-03 02:28:00
Format string
2007-01-16 23:28:00
cve
cve
CVE-2007-0017
2007-01-03 02:28:00
CVE-2007-0255
2007-01-16 23:28:00
openvas
openvas
Debian Security Advisory DSA 1252-1 (vlc)
2008-01-17 00:00:00
SuSE Update for xine-ui,xine-lib,xine-extra,xine-devel SUSE-SA:2007:013
2009-01-28 00:00:00
Gentoo Security Advisory GLSA 200701-24 (vlc)
2008-09-24 00:00:00
nessus
nessus
SuSE 10 Security Update : xine (ZYPP Patch Number 2505)
2007-12-13 00:00:00
openSUSE 10 Security Update : xine-lib (xine-lib-2488)
2007-10-17 00:00:00
Debian DSA-1252-1 : vlc - format string
2007-02-09 00:00:00
osv
osv
vlc
2007-01-27 00:00:00
checkpoint_advisories
checkpoint_advisories
VLC udp Handler Format String Code Execution - Ver2 (CVE-2007-0017)
2014-12-28 00:00:00
debian
debian
[SECURITY] [DSA 1252-1] New vlc packages fix arbitrary code execution
2007-01-27 14:37:46
packetstorm
packetstorm
VLCMediaSlayer-x86.pl.txt
2007-01-04 00:00:00
VLCMediaSlayer-ppc.pl.txt
2007-01-04 00:00:00
ubuntucve
ubuntucve
CVE-2007-0017
2007-01-03 00:00:00
CVE-2007-0255
2007-01-16 00:00:00
gentoo
gentoo
VLC media player: Format string vulnerability
2007-01-26 00:00:00
debiancve
debiancve
CVE-2007-0017
2007-01-03 02:28:00
securityvulns
securityvulns
VLC Media Player buffer overflow
2007-01-21 00:00:00

0.951 High

EPSS

Percentile

99.1%

JSON
Related for SUSE-SA:2007:013
prion2cve2openvas7nessus8osv1checkpoint_advisories1debian1packetstorm2ubuntucve2gentoo1debiancve1securityvulns1