Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-433-1
HistoryMar 09, 2007 - 12:00 a.m.

Xine vulnerability

2007-03-0900:00:00
ubuntu.com
30

6.5 Medium

AI Score

Confidence

Low

0.297 Low

EPSS

Percentile

96.9%

JSON

Releases

  • Ubuntu 6.10
  • Ubuntu 6.06
  • Ubuntu 5.10

Details

Moritz Jodeit discovered that the DMO loader of Xine did not correctly
validate the size of an allocated buffer. By tricking a user into
opening a specially crafted media file, an attacker could execute
arbitrary code with the user’s privileges.

OSVersionArchitecturePackageVersionFilename
Ubuntu6.10noarchlibxine1< 1.1.2+repacked1-0ubuntu3.3UNKNOWN
Ubuntu6.06noarchlibxine-main1< 1.1.1+ubuntu2-7.6UNKNOWN
Ubuntu5.10noarchlibxine1c2< 1.0.1-1ubuntu10.8UNKNOWN

Related

openvas 16
nessus 10
gentoo 2
slackware 1
freebsd 1
prion 2
debiancve 2
cve 2
ubuntucve 2
securityvulns 1
cvelist 2
debian 1
osv 1
openvas
openvas
Mandriva Update for mplayer MDKSA-2007:055 (mplayer)
2009-04-09 00:00:00
Gentoo Security Advisory GLSA 200704-09 (xine-lib)
2008-09-24 00:00:00
Ubuntu: Security Advisory (USN-433-1)
2009-03-23 00:00:00
nessus
nessus
openSUSE 10 Security Update : xine-lib (xine-lib-2989)
2007-10-17 00:00:00
Ubuntu 5.10 / 6.06 LTS / 6.10 : xine-lib vulnerability (USN-433-1)
2007-11-10 00:00:00
Mandrake Linux Security Advisory : xine-lib (MDKSA-2007:057)
2007-03-12 00:00:00
gentoo
gentoo
xine-lib: Heap-based buffer overflow
2007-04-14 00:00:00
MPlayer: Two buffer overflows
2007-05-30 00:00:00
slackware
slackware
[slackware-security] xine-lib
2007-04-20 02:55:26
freebsd
freebsd
mplayer -- DMO File Parsing Buffer Overflow Vulnerability
2007-02-11 00:00:00
prion
prion
Buffer overflow
2007-03-13 19:19:00
Buffer overflow
2007-03-03 19:19:00
debiancve
debiancve
CVE-2007-1246
2007-03-03 19:19:00
CVE-2007-1387
2007-03-13 19:19:00
cve
cve
CVE-2007-1387
2007-03-13 19:19:00
CVE-2007-1246
2007-03-03 19:19:00
ubuntucve
ubuntucve
CVE-2007-1387
2007-03-13 00:00:00
CVE-2007-1246
2007-03-03 00:00:00
securityvulns
securityvulns
MPlayer DMO player buffer overflow
2007-03-01 00:00:00
cvelist
cvelist
CVE-2007-1246
2007-03-03 19:00:00
CVE-2007-1387
2007-03-13 19:00:00
debian
debian
[SECURITY] [DSA 1536-1] New libxine packages fix several vulnerabilities
2008-03-31 20:52:02
osv
osv
xine-lib - several vulnerabilities
2008-03-31 00:00:00

6.5 Medium

AI Score

Confidence

Low

0.297 Low

EPSS

Percentile

96.9%

JSON
Related for USN-433-1
openvas16nessus10gentoo2slackware1freebsd1prion2debiancve2cve2ubuntucve2securityvulns1cvelist2debian1osv1