Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine-lib vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2008-5235
Heap-based buffer overflow in the demux_real_send_chunk function in src/demuxers/demux_real.c in xine-lib prior to 1.1.15 allows remote malicious users to execute arbitrary code via a crafted Real Media file. NOTE: some of these details are obtained from third party information.
Xine Xine 1.1.2
Xine Xine 1.1.1
Xine Xine 1.1.0
Xine Xine 1
Xine Xine 1.1.3
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.0.3a
Xine Xine 1.0.2
Xine Xine
Xine Xine 1.1.11.1
Xine Xine 1.1.10.1
Xine Xine 1.0.1
Xine Xine 1.0
9.3
CVSSv2
CVE-2008-1686
Array index vulnerability in Speex 1.1.12 and previous versions, as used in libfishsound 0.9.0 and previous versions, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib prior to 1.1.12, and many other products, allows remote malicious users to exec...
Xine Xine-lib 1.1.10
Xine Xine-lib 1.1.1
Xine Xine-lib 0.9.8
Xine Xine-lib 0.9.13
Xine Xine-lib
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.0
Xine Xine-lib 0.99
Xine Xine-lib 1.1.0
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.11
Xine Xine-lib 1.0.2
Xine Xine-lib 1.0.1
Xiph Speex 1.1.9
Xiph Speex 1.1.8
Xiph Speex 1.0.5
Xiph Speex 1.0.3
Xiph Speex 1.1.2
Xiph Speex 1.1.11
Xiph Speex 1.1.10
Xiph Speex 1.1.4
Xiph Speex 1.1.3
9.3
CVSSv2
CVE-2008-1161
Buffer overflow in the Matroska demuxer (demuxers/demux_matroska.c) in xine-lib prior to 1.1.10.1 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a Matroska file with invalid frame sizes.
Matroska Demuxer
7.6
CVSSv2
CVE-2007-1246
The DMO_VideoDecoder_Open function in loader/dmo/DMO_VideoDecoder.c in MPlayer 1.0rc1 and previous versions, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote malicious users to cause a buffer overflow and possibly execute arbi...
Mplayer Mplayer
7.5
CVSSv2
CVE-2009-0698
Integer overflow in the 4xm demuxer (demuxers/demux_4xm.c) in xine-lib 1.1.16.1 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a 4X movie file with a large current_track value, a similar issue to CVE-2009-0385.
Xine Xine-lib 1.1.16.1
7.5
CVSSv2
CVE-2008-1964
Stack-based buffer overflow in the demux_nsf_send_headers function in src/demuxers/demux_nsf.c in xine-lib allows remote malicious users to have an unknown impact via a long copyright field in an NSF header in an NES Sound file, a different issue than CVE-2008-1878. NOTE: a third...
Xinehq Xine Lib
7.5
CVSSv2
CVE-2008-1878
Stack-based buffer overflow in the demux_nsf_send_chunk function in src/demuxers/demux_nsf.c in xine-lib 1.1.12 and previous versions allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long NSF title.
Xine Xine-lib 1.1.9
Xine Xine-lib
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.1
Xine Xine-lib 1.1.10
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.11
Xine Xine-lib 1.1.11.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-0486
Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote malicious users to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow.
Mplayer Mplayer 1.02rc2
Xine Xine-lib 1.1.10
7.5
CVSSv2
CVE-2008-0238
Multiple heap-based buffer overflows in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 allow remote malicious users to execute arbitrary code via the SDP (1) Title, (2) Author, or (3) Copyright attribute, related to the rmff_dump_header function, different ...
Xine Xine-lib
7.5
CVSSv2
CVE-2006-6172
Buffer overflow in the asmrp_eval function in the RealMedia RTSP stream handler (asmrp.c) for Real Media input plugin, as used in (1) xine/xine-lib, (2) MPlayer 1.0rc1 and previous versions, and possibly others, allows remote malicious users to cause a denial of service and possi...
Xine Real Media Input Plugin
Mplayer Mplayer
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »