Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine xine 1.0.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-0486
Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote malicious users to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow.
Mplayer Mplayer 1.02rc2
Xine Xine-lib 1.1.10
7.5
CVSSv2
CVE-2006-6172
Buffer overflow in the asmrp_eval function in the RealMedia RTSP stream handler (asmrp.c) for Real Media input plugin, as used in (1) xine/xine-lib, (2) MPlayer 1.0rc1 and previous versions, and possibly others, allows remote malicious users to cause a denial of service and possi...
Xine Real Media Input Plugin
Mplayer Mplayer
7.5
CVSSv2
CVE-2006-4800
Multiple buffer overflows in libavcodec in ffmpeg prior to 0.4.9_p20060530 allow remote malicious users to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tt...
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.4.6
Ffmpeg Ffmpeg 0.4.8
Ffmpeg Ffmpeg 0.4.9
7.5
CVSSv2
CVE-2006-4799
Buffer overflow in ffmpeg for xine-lib prior to 1.1.2 might allow context-dependent malicious users to execute arbitrary code via a crafted AVI file and "bad indexes", a different vulnerability than CVE-2005-4048 and CVE-2006-2802.
Xine Xine-lib 1.0.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.0
Xine Xine-lib
7.5
CVSSv2
CVE-2006-1905
Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine 0.99.3 allow remote malicious users to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file.
Xine Xine 0.9.13
Xine Xine 0.9.18
Xine Xine 1 Beta11
Xine Xine 1 Beta12
Xine Xine 1 Beta9
Xine Xine 1 Rc0
Xine Xine 1 Rc4
Xine Xine 1 Rc5
Xine Xine 1.0.1
Xine Xine 1 Alpha
Xine Xine 1 Beta4
Xine Xine 1 Beta5
Xine Xine 1 Beta6
Xine Xine 1 Rc2
Xine Xine 1 Rc3
Xine Xine 1 Rc7
Xine Xine 1 Rc8
Xine Xine 1 Beta1
Xine Xine 1 Beta10
Xine Xine 1 Beta7
Xine Xine 1 Beta8
Xine Xine 1 Rc3a
1 EDB exploit
7.5
CVSSv2
CVE-2006-1664
Buffer overflow in xine_list_delete_current in libxine 1.14 and previous versions, as distributed in xine-lib 1.1.1 and previous versions, allows remote malicious users to execute arbitrary code via a crafted MPEG stream.
Xine Xine-lib 1.0.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.1
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2005-4048
Heap-based buffer overflow in the avcodec_default_get_buffer function (utils.c) in FFmpeg libavcodec 0.4.9-pre1 and previous versions, as used in products such as (1) mplayer, (2) xine-lib, (3) Xmovie, and (4) GStreamer, allows remote malicious users to execute arbitrary commands...
Ffmpeg Ffmpeg 0.4.8
Ffmpeg Ffmpeg 0.4.9
Ffmpeg Ffmpeg 0.4.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg Cvs
7.5
CVSSv2
CVE-2005-2967
Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 up to and including 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.
Xine Xine-lib 1.0
Xine Xine-lib 1.0.1
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.0
1 EDB exploit
7.1
CVSSv2
CVE-2008-5238
Integer overflow in the real_parse_mdpr function in demux_real.c in xine-lib 1.1.12, and other versions prior to 1.1.15, allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted stream_name_size field.
Xine Xine 1.0.1
Xine Xine 1.0
Xine Xine 1
Xine Xine 1.1.1
Xine Xine 1.1.0
Xine Xine 1.1.11.1
Xine Xine 1.1.10.1
Xine Xine 1.1.3
Xine Xine 1.1.2
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.0.3a
Xine Xine 1.0.2
Xine Xine
Xine Xine 1.1.4
6.8
CVSSv2
CVE-2008-5242
demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, does not validate the count field before calling calloc for STSD_ATOM atom allocation, which allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a...
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.10
Xine Xine-lib 1.1.4
Xine Xine-lib 1.1.3
Xine Xine-lib 1.0
Xine Xine-lib 1
Xine Xine-lib 1 Beta9
Xine Xine-lib 1 Beta8
Xine Xine-lib 1 Beta1
Xine Xine-lib 0.9.13
Xine Xine-lib 1.1.14
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.1.11
Xine Xine-lib 1.1.6
Xine Xine-lib 1.1.5
Xine Xine-lib 1.0.2
Xine Xine-lib 1.0.1
Xine Xine-lib 1 Beta11
Xine Xine-lib 1 Beta10
Xine Xine-lib 1 Beta3
Xine Xine-lib 1 Beta2
Xine Xine-lib 1.1.9
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »