Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine xine 0.9.13 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2005-2967
Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 up to and including 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.
Xine Xine-lib 1.0
Xine Xine-lib 1.0.1
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.0
1 EDB exploit
755
VMScore
CVE-2006-1664
Buffer overflow in xine_list_delete_current in libxine 1.14 and previous versions, as distributed in xine-lib 1.1.1 and previous versions, allows remote malicious users to execute arbitrary code via a crafted MPEG stream.
Xine Xine-lib 1.0.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.1
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0
1 EDB exploit
828
VMScore
CVE-2008-5235
Heap-based buffer overflow in the demux_real_send_chunk function in src/demuxers/demux_real.c in xine-lib prior to 1.1.15 allows remote malicious users to execute arbitrary code via a crafted Real Media file. NOTE: some of these details are obtained from third party information.
Xine Xine 1.1.2
Xine Xine 1.1.1
Xine Xine 1.1.0
Xine Xine 1
Xine Xine 1.1.3
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.0.3a
Xine Xine 1.0.2
Xine Xine
Xine Xine 1.1.11.1
Xine Xine 1.1.10.1
Xine Xine 1.0.1
Xine Xine 1.0
632
VMScore
CVE-2008-5238
Integer overflow in the real_parse_mdpr function in demux_real.c in xine-lib 1.1.12, and other versions prior to 1.1.15, allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted stream_name_size field.
Xine Xine 1.0.1
Xine Xine 1.0
Xine Xine 1
Xine Xine 1.1.1
Xine Xine 1.1.0
Xine Xine 1.1.11.1
Xine Xine 1.1.10.1
Xine Xine 1.1.3
Xine Xine 1.1.2
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.0.3a
Xine Xine 1.0.2
Xine Xine
Xine Xine 1.1.4
828
VMScore
CVE-2008-5236
Multiple heap-based buffer overflows in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, allow remote malicious users to execute arbitrary code via vectors related to (1) a crafted EBML element length processed by the parse_block_group function in demux_matroska....
Xine Xine 1.1.1
Xine Xine 1.1.0
Xine Xine 1
Xine Xine 1.1.10.1
Xine Xine 1.1.4
Xine Xine 1.0.1
Xine Xine 1.0
Xine Xine 1.0.3a
Xine Xine 1.0.2
Xine Xine
Xine Xine 1.1.3
Xine Xine 1.1.2
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.1.11.1
890
VMScore
CVE-2008-5237
Multiple integer overflows in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, allow remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via (1) crafted width and height values that are not validated by the mymng_process...
Xine Xine 1.0.3a
Xine Xine 1.0.2
Xine Xine 1
Xine Xine 1.1.4
Xine Xine
Xine Xine 1.1.3
Xine Xine 1.1.2
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.0.1
Xine Xine 1.0
Xine Xine 1.1.1
Xine Xine 1.1.0
Xine Xine 1.1.11.1
Xine Xine 1.1.10.1
187
VMScore
CVE-2004-0372
xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xine-check scripts.
Xine Xine 0.9.13
Xine Xine 1 Beta1
Xine Xine 1 Beta5
Xine Xine 1 Beta12
Xine Xine 1 Beta2
Xine Xine 1 Beta9
Xine Xine 1 Rc0a
Xine Xine 1 Beta10
Xine Xine 1 Beta11
Xine Xine 1 Beta7
Xine Xine 1 Beta8
Xine Xine 1 Beta6
Xine Xine 1 Rc3
Xine Xine 1 Rc3a
Xine Xine 1 Rc3b
Xine Xine 1 Beta3
Xine Xine 1 Beta4
Xine Xine 1 Rc1
Xine Xine 1 Rc2
755
VMScore
CVE-2006-1905
Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine 0.99.3 allow remote malicious users to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file.
Xine Xine 0.9.13
Xine Xine 0.9.18
Xine Xine 1 Beta11
Xine Xine 1 Beta12
Xine Xine 1 Beta9
Xine Xine 1 Rc0
Xine Xine 1 Rc4
Xine Xine 1 Rc5
Xine Xine 1.0.1
Xine Xine 1 Alpha
Xine Xine 1 Beta4
Xine Xine 1 Beta5
Xine Xine 1 Beta6
Xine Xine 1 Rc2
Xine Xine 1 Rc3
Xine Xine 1 Rc7
Xine Xine 1 Rc8
Xine Xine 1 Beta1
Xine Xine 1 Beta10
Xine Xine 1 Beta7
Xine Xine 1 Beta8
Xine Xine 1 Rc3a
1 EDB exploit
505
VMScore
CVE-2004-1951
xine 1.x alpha, 1.x beta, and 1.0rc up to and including 1.0rc3a, and xine-ui 0.9.21 to 0.9.23 allows remote malicious users to overwrite arbitrary files via the (1) audio.sun_audio_device or (2) dxr3.devicename options in an MRL link.
Xine Xine-lib 1 Rc3a
Xine Xine-lib 1 Rc3b
Xine Xine 1 Beta10
Xine Xine 1 Beta11
Xine Xine 1 Beta7
Xine Xine 1 Beta8
Xine Xine 1 Rc3b
Xine Xine-lib 1 Rc2
Xine Xine 0.9.13
Xine Xine 0.9.8
Xine Xine 1 Beta1
Xine Xine 1 Beta5
Xine Xine 1 Beta6
Xine Xine 1 Rc3
Xine Xine 1 Rc3a
Xine Xine-lib 1 Rc3c
Xine Xine-ui 0.9.21
Xine Xine 1 Beta12
Xine Xine 1 Beta2
Xine Xine 1 Beta9
Xine Xine 1 Rc0a
Xine Xine-ui 0.9.22
1 EDB exploit
383
VMScore
CVE-2008-3231
xine-lib prior to 1.1.15 allows remote malicious users to cause a denial of service (crash) via a crafted OGG file, as demonstrated by playing lol-ffplay.ogg with xine.
Xine Xine-lib 1.1.1
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.2
Xine Xine-lib 1.1.4
Xine Xine-lib 1.1.5
Xine Xine-lib 1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.1.8
Xine Xine-lib 1.1.9
Xine Xine-lib 0.99
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.3
Xine Xine-lib 1.1.12
Xine Xine-lib 1.1.6
Xine Xine-lib 1.1.7
Xine Xine-lib 0.9.8
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »