Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine xine 0.9.13 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-2967
Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 up to and including 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.
Xine Xine-lib 1.0
Xine Xine-lib 1.0.1
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-1664
Buffer overflow in xine_list_delete_current in libxine 1.14 and previous versions, as distributed in xine-lib 1.1.1 and previous versions, allows remote malicious users to execute arbitrary code via a crafted MPEG stream.
Xine Xine-lib 1.0.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.1
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0
1 EDB exploit
9.3
CVSSv2
CVE-2008-5235
Heap-based buffer overflow in the demux_real_send_chunk function in src/demuxers/demux_real.c in xine-lib prior to 1.1.15 allows remote malicious users to execute arbitrary code via a crafted Real Media file. NOTE: some of these details are obtained from third party information.
Xine Xine 1.1.2
Xine Xine 1.1.1
Xine Xine 1.1.0
Xine Xine 1
Xine Xine 1.1.3
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.0.3a
Xine Xine 1.0.2
Xine Xine
Xine Xine 1.1.11.1
Xine Xine 1.1.10.1
Xine Xine 1.0.1
Xine Xine 1.0
7.1
CVSSv2
CVE-2008-5238
Integer overflow in the real_parse_mdpr function in demux_real.c in xine-lib 1.1.12, and other versions prior to 1.1.15, allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted stream_name_size field.
Xine Xine 1.0.1
Xine Xine 1.0
Xine Xine 1
Xine Xine 1.1.1
Xine Xine 1.1.0
Xine Xine 1.1.11.1
Xine Xine 1.1.10.1
Xine Xine 1.1.3
Xine Xine 1.1.2
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.0.3a
Xine Xine 1.0.2
Xine Xine
Xine Xine 1.1.4
9.3
CVSSv2
CVE-2008-5236
Multiple heap-based buffer overflows in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, allow remote malicious users to execute arbitrary code via vectors related to (1) a crafted EBML element length processed by the parse_block_group function in demux_matroska....
Xine Xine 1.1.1
Xine Xine 1.1.0
Xine Xine 1
Xine Xine 1.1.10.1
Xine Xine 1.1.4
Xine Xine 1.0.1
Xine Xine 1.0
Xine Xine 1.0.3a
Xine Xine 1.0.2
Xine Xine
Xine Xine 1.1.3
Xine Xine 1.1.2
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.1.11.1
10
CVSSv2
CVE-2008-5237
Multiple integer overflows in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, allow remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via (1) crafted width and height values that are not validated by the mymng_process...
Xine Xine 1.0.3a
Xine Xine 1.0.2
Xine Xine 1
Xine Xine 1.1.4
Xine Xine
Xine Xine 1.1.3
Xine Xine 1.1.2
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.0.1
Xine Xine 1.0
Xine Xine 1.1.1
Xine Xine 1.1.0
Xine Xine 1.1.11.1
Xine Xine 1.1.10.1
2.1
CVSSv2
CVE-2004-0372
xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xine-check scripts.
Xine Xine 0.9.13
Xine Xine 1 Beta1
Xine Xine 1 Beta5
Xine Xine 1 Beta12
Xine Xine 1 Beta2
Xine Xine 1 Beta9
Xine Xine 1 Rc0a
Xine Xine 1 Beta10
Xine Xine 1 Beta11
Xine Xine 1 Beta7
Xine Xine 1 Beta8
Xine Xine 1 Beta6
Xine Xine 1 Rc3
Xine Xine 1 Rc3a
Xine Xine 1 Rc3b
Xine Xine 1 Beta3
Xine Xine 1 Beta4
Xine Xine 1 Rc1
Xine Xine 1 Rc2
7.5
CVSSv2
CVE-2006-1905
Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine 0.99.3 allow remote malicious users to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file.
Xine Xine 0.9.13
Xine Xine 0.9.18
Xine Xine 1 Beta11
Xine Xine 1 Beta12
Xine Xine 1 Beta9
Xine Xine 1 Rc0
Xine Xine 1 Rc4
Xine Xine 1 Rc5
Xine Xine 1.0.1
Xine Xine 1 Alpha
Xine Xine 1 Beta4
Xine Xine 1 Beta5
Xine Xine 1 Beta6
Xine Xine 1 Rc2
Xine Xine 1 Rc3
Xine Xine 1 Rc7
Xine Xine 1 Rc8
Xine Xine 1 Beta1
Xine Xine 1 Beta10
Xine Xine 1 Beta7
Xine Xine 1 Beta8
Xine Xine 1 Rc3a
1 EDB exploit
5
CVSSv2
CVE-2004-1951
xine 1.x alpha, 1.x beta, and 1.0rc up to and including 1.0rc3a, and xine-ui 0.9.21 to 0.9.23 allows remote malicious users to overwrite arbitrary files via the (1) audio.sun_audio_device or (2) dxr3.devicename options in an MRL link.
Xine Xine-lib 1 Rc3a
Xine Xine-lib 1 Rc3b
Xine Xine 1 Beta10
Xine Xine 1 Beta11
Xine Xine 1 Beta7
Xine Xine 1 Beta8
Xine Xine 1 Rc3b
Xine Xine-lib 1 Rc2
Xine Xine 0.9.13
Xine Xine 0.9.8
Xine Xine 1 Beta1
Xine Xine 1 Beta5
Xine Xine 1 Beta6
Xine Xine 1 Rc3
Xine Xine 1 Rc3a
Xine Xine-lib 1 Rc3c
Xine Xine-ui 0.9.21
Xine Xine 1 Beta12
Xine Xine 1 Beta2
Xine Xine 1 Beta9
Xine Xine 1 Rc0a
Xine Xine-ui 0.9.22
1 EDB exploit
4.3
CVSSv2
CVE-2008-3231
xine-lib prior to 1.1.15 allows remote malicious users to cause a denial of service (crash) via a crafted OGG file, as demonstrated by playing lol-ffplay.ogg with xine.
Xine Xine-lib 1.1.1
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.2
Xine Xine-lib 1.1.4
Xine Xine-lib 1.1.5
Xine Xine-lib 1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.1.8
Xine Xine-lib 1.1.9
Xine Xine-lib 0.99
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.3
Xine Xine-lib 1.1.12
Xine Xine-lib 1.1.6
Xine Xine-lib 1.1.7
Xine Xine-lib 0.9.8
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »