Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine-ui vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2007-0254
Format string vulnerability in the errors_create_window function in errors.c in xine-ui allows malicious users to execute arbitrary code via unknown vectors.
Xine Xine-ui
505
VMScore
CVE-2004-1951
xine 1.x alpha, 1.x beta, and 1.0rc up to and including 1.0rc3a, and xine-ui 0.9.21 to 0.9.23 allows remote malicious users to overwrite arbitrary files via the (1) audio.sun_audio_device or (2) dxr3.devicename options in an MRL link.
Xine Xine-lib 1 Rc3a
Xine Xine-lib 1 Rc3b
Xine Xine 1 Beta10
Xine Xine 1 Beta11
Xine Xine 1 Beta7
Xine Xine 1 Beta8
Xine Xine 1 Rc3b
Xine Xine-lib 1 Rc2
Xine Xine 0.9.13
Xine Xine 0.9.8
Xine Xine 1 Beta1
Xine Xine 1 Beta5
Xine Xine 1 Beta6
Xine Xine 1 Rc3
Xine Xine 1 Rc3a
Xine Xine-lib 1 Rc3c
Xine Xine-ui 0.9.21
Xine Xine 1 Beta12
Xine Xine 1 Beta2
Xine Xine 1 Beta9
Xine Xine 1 Rc0a
Xine Xine-ui 0.9.22
1 EDB exploit
755
VMScore
CVE-2006-1905
Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine 0.99.3 allow remote malicious users to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file.
Xine Xine 0.9.13
Xine Xine 0.9.18
Xine Xine 1 Beta11
Xine Xine 1 Beta12
Xine Xine 1 Beta9
Xine Xine 1 Rc0
Xine Xine 1 Rc4
Xine Xine 1 Rc5
Xine Xine 1.0.1
Xine Xine 1 Alpha
Xine Xine 1 Beta4
Xine Xine 1 Beta5
Xine Xine 1 Beta6
Xine Xine 1 Rc2
Xine Xine 1 Rc3
Xine Xine 1 Rc7
Xine Xine 1 Rc8
Xine Xine 1 Beta1
Xine Xine 1 Beta10
Xine Xine 1 Beta7
Xine Xine 1 Beta8
Xine Xine 1 Rc3a
1 EDB exploit
505
VMScore
CVE-2006-2230
Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine 0.99.4 might allow malicious users to cause a denial of service via format string specifiers in an MP3 filename specified on the command line. NOTE: this is a different vulnerability than CVE-2006-1905. In addit...
Xine Xine 0.99.4
1 EDB exploit
505
VMScore
CVE-2006-2802
Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote malicious users to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.
Xine Xine-lib 1.0.1
Xine Xine-lib 1.0.2
Xine Gxine 0.5.6
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.1
1 EDB exploit
668
VMScore
CVE-2005-2337
Ruby 1.6.x up to 1.6.8, 1.8.x up to 1.8.2, and 1.9.0 development up to 2005-09-01 allows malicious users to bypass safe level and taint flag protections and execute disallowed code when Ruby processes a program through standard input (stdin).
Yukihiro Matsumoto Ruby 1.6.1
Yukihiro Matsumoto Ruby 1.6.2
Yukihiro Matsumoto Ruby 1.8.1
Yukihiro Matsumoto Ruby 1.8.2 Pre1
Yukihiro Matsumoto Ruby 1.6.3
Yukihiro Matsumoto Ruby 1.6.4
Yukihiro Matsumoto Ruby 1.8.2 Pre2
Yukihiro Matsumoto Ruby 1.6
Yukihiro Matsumoto Ruby 1.6.7
Yukihiro Matsumoto Ruby 1.8
Yukihiro Matsumoto Ruby 1.6.5
Yukihiro Matsumoto Ruby 1.6.6
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started