Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine xine-lib 1.1.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1878
Stack-based buffer overflow in the demux_nsf_send_chunk function in src/demuxers/demux_nsf.c in xine-lib 1.1.12 and previous versions allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long NSF title.
Xine Xine-lib 1.1.10
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.11
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.9
Xine Xine-lib
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.1.1
1 EDB exploit
NA
CVE-2006-1664
Buffer overflow in xine_list_delete_current in libxine 1.14 and previous versions, as distributed in xine-lib 1.1.1 and previous versions, allows remote malicious users to execute arbitrary code via a crafted MPEG stream.
Xine Xine-lib 1.1.0
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.0.1
Xine Xine-lib 1.0.2
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0
Xine Xine-lib 1.1.1
1 EDB exploit
NA
CVE-2009-1274
Integer overflow in the qt_error parse_trak_atom function in demuxers/demux_qt.c in xine-lib 1.1.16.2 and previous versions allows remote malicious users to execute arbitrary code via a Quicktime movie file with a large count value in an STTS atom, which triggers a heap-based buf...
Xine Xine-lib 1.1.10
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.11
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.12
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.1.16.1
Xine Xine-lib 1.1.16.2
Xine Xine-lib 1.1.15
Xine Xine-lib 1.1.14
Xine Xine-lib 1.1.1
NA
CVE-2006-2802
Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote malicious users to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.
Xine Xine-lib 1.1.0
Xine Xine-lib 1.0.1
Xine Gxine 0.5.6
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.1
1 EDB exploit
NA
CVE-2008-3231
xine-lib prior to 1.1.15 allows remote malicious users to cause a denial of service (crash) via a crafted OGG file, as demonstrated by playing lol-ffplay.ogg with xine.
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1.1.11
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 0.9.8
Xine Xine-lib 1.1.2
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1.1.3
Xine Xine-lib
Xine Xine-lib 1.1.4
Xine Xine-lib 1.1.5
Xine Xine-lib 0.99
NA
CVE-2008-5247
The real_parse_audio_specific_data function in demux_real.c in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, uses an untrusted height (aka codec_data_length) value as a divisor, which allow remote malicious users to cause a denial of service (divide-by-zero er...
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
NA
CVE-2008-5241
Integer underflow in demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, allows remote malicious users to cause a denial of service (crash) via a crafted media file that results in a small value of moov_atom_size in a compressed MOV (aka CMOV_ATOM).
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
NA
CVE-2008-5243
The real_parse_headers function in demux_real.c in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, relies on an untrusted input length value to "reindex into an allocated buffer," which allows remote malicious users to cause a denial of service (crash)...
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
NA
CVE-2008-5244
Unspecified vulnerability in xine-lib prior to 1.1.15 has unknown impact and attack vectors related to libfaad. NOTE: due to the lack of details, it is not clear whether this is an issue in xine-lib or in libfaad.
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
NA
CVE-2008-5248
xine-lib prior to 1.1.15 allows remote malicious users to cause a denial of service (crash) via "MP3 files with metadata consisting only of separators."
Xine Xine-lib 1.1.10
Xine Xine-lib 1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.9.1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1.1.11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.7
Xine Xine-lib 1.1.2
Xine Xine-lib 1 Beta4
Xine Xine-lib
Xine Xine-lib 1.1.9
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.12
Xine Xine-lib 1.0.1
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.8
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »