Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine xine-lib 1.0.3a vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-1664
Buffer overflow in xine_list_delete_current in libxine 1.14 and previous versions, as distributed in xine-lib 1.1.1 and previous versions, allows remote malicious users to execute arbitrary code via a crafted MPEG stream.
Xine Xine-lib 1.1.0
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.0.1
Xine Xine-lib 1.0.2
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0
Xine Xine-lib 1.1.1
1 EDB exploit
NA
CVE-2008-3231
xine-lib prior to 1.1.15 allows remote malicious users to cause a denial of service (crash) via a crafted OGG file, as demonstrated by playing lol-ffplay.ogg with xine.
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1.1.11
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 0.9.8
Xine Xine-lib 1.1.2
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1.1.3
Xine Xine-lib
Xine Xine-lib 1.1.4
Xine Xine-lib 1.1.5
Xine Xine-lib 0.99
NA
CVE-2008-5247
The real_parse_audio_specific_data function in demux_real.c in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, uses an untrusted height (aka codec_data_length) value as a divisor, which allow remote malicious users to cause a denial of service (divide-by-zero er...
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
NA
CVE-2008-5241
Integer underflow in demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, allows remote malicious users to cause a denial of service (crash) via a crafted media file that results in a small value of moov_atom_size in a compressed MOV (aka CMOV_ATOM).
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
NA
CVE-2008-5243
The real_parse_headers function in demux_real.c in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, relies on an untrusted input length value to "reindex into an allocated buffer," which allows remote malicious users to cause a denial of service (crash)...
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
NA
CVE-2008-5244
Unspecified vulnerability in xine-lib prior to 1.1.15 has unknown impact and attack vectors related to libfaad. NOTE: due to the lack of details, it is not clear whether this is an issue in xine-lib or in libfaad.
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
NA
CVE-2008-5248
xine-lib prior to 1.1.15 allows remote malicious users to cause a denial of service (crash) via "MP3 files with metadata consisting only of separators."
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
NA
CVE-2008-5240
xine-lib 1.1.12, and other 1.1.15 and previous versions versions, relies on an untrusted input value to determine the memory allocation and does not check the result for (1) the MATROSKA_ID_TR_CODECPRIVATE track entry element processed by demux_matroska.c; and (2) PROP_TAG, (3) M...
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
NA
CVE-2008-5242
demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, does not validate the count field before calling calloc for STSD_ATOM atom allocation, which allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a...
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
NA
CVE-2008-5233
xine-lib 1.1.12, and other versions prior to 1.1.15, does not check for failure of malloc in circumstances including (1) the mymng_process_header function in demux_mng.c, (2) the open_mod_file function in demux_mod.c, and (3) frame_buffer allocation in the real_parse_audio_specif...
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
Xine Xine-lib 1 Beta11
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »