Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine xine-lib 1 vulnerabilities and exploits
(subscribe to this query)
5.1
CVSSv2
CVE-2004-1475
Multiple stack-based buffer overflows in xine-lib 1-rc2 through 1-rc5 allow malicious users to execute arbitrary code via (1) long VideoCD vcd:// MRLs or (2) long subtitle lines.
Xine Xine-lib 0.99
Xine Xine 1 Rc3
Xine Xine 1 Rc4
Xine Xine-lib 1 Rc4
Xine Xine-lib 1 Rc5
Xine Xine 0.9.18
Xine Xine 1 Rc2
Xine Xine-lib 1 Rc2
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc5
1 EDB exploit
10
CVSSv2
CVE-2004-1188
The pnm_get_chunk function in xine 0.99.2 and previous versions, and other packages such as MPlayer that use the same code, does not properly verify that the chunk size is less than the PREAMBLE_SIZE, which causes a read operation with a negative length that leads to a buffer ove...
Mplayer Mplayer 0.92
Mplayer Mplayer 0.92.1
Mplayer Mplayer 1.0 Pre5
Mplayer Mplayer 1.0 Pre5try1
Xine Xine-lib 1 Beta1
Xine Xine-lib 1 Beta10
Xine Xine-lib 1 Beta7
Xine Xine-lib 1 Beta8
Xine Xine-lib 1 Rc3b
Xine Xine-lib 1 Rc3c
Xine Xine 0.9.18
Xine Xine 0.9.8
Xine Xine 1 Beta4
Xine Xine 1 Beta5
Xine Xine 1 Rc1
Xine Xine 1 Rc2
Xine Xine 1 Rc6a
Xine Xine 1 Rc7
Mplayer Mplayer 0.90
Mplayer Mplayer 0.90 Pre
Mplayer Mplayer 1.0 Pre2
Mplayer Mplayer 1.0 Pre3
9.3
CVSSv2
CVE-2008-1686
Array index vulnerability in Speex 1.1.12 and previous versions, as used in libfishsound 0.9.0 and previous versions, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib prior to 1.1.12, and many other products, allows remote malicious users to exec...
Xine Xine-lib 1.1.10
Xine Xine-lib 1.1.1
Xine Xine-lib 0.9.8
Xine Xine-lib 0.9.13
Xine Xine-lib
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.0
Xine Xine-lib 0.99
Xine Xine-lib 1.1.0
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.11
Xine Xine-lib 1.0.2
Xine Xine-lib 1.0.1
Xiph Speex 1.1.9
Xiph Speex 1.1.8
Xiph Speex 1.0.5
Xiph Speex 1.0.3
Xiph Speex 1.1.2
Xiph Speex 1.1.11
Xiph Speex 1.1.10
Xiph Speex 1.1.4
Xiph Speex 1.1.3
5.1
CVSSv2
CVE-2004-1476
Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows malicious users to execute arbitrary code via a VideoCD with an unterminated disk label.
Xine Xine 0.9.18
Xine Xine 1 Rc2
Xine Xine-lib 0.99
Xine Xine-lib 1 Rc2
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc5
Xine Xine-lib 1 Rc4
Xine Xine-lib 1 Rc5
Xine Xine 1 Rc3
Xine Xine 1 Rc4
Suse Suse Linux 8.2
Suse Suse Linux 9.0
Suse Suse Linux 9.2
Suse Suse Linux 8.0
Suse Suse Linux 8.1
Suse Suse Linux 9.1
6.4
CVSSv2
CVE-2008-0225
Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and previous versions allows remote malicious users to execute arbitrary code via the SDP Abstract attribute in an RTSP session, related to the rmff_dump_header function and relate...
Xine Xine-lib
1 EDB exploit
7.5
CVSSv2
CVE-2008-0238
Multiple heap-based buffer overflows in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 allow remote malicious users to execute arbitrary code via the SDP (1) Title, (2) Author, or (3) Copyright attribute, related to the rmff_dump_header function, different ...
Xine Xine-lib
10
CVSSv2
CVE-2004-1300
Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows remote malicious users to execute arbitrary code via a crafted AIFF file.
Xine Xine-lib 1 Rc7
1 EDB exploit
6.8
CVSSv2
CVE-2008-1482
Multiple integer overflows in xine-lib 1.1.11 and previous versions allow remote malicious users to trigger heap-based buffer overflows and possibly execute arbitrary code via (1) a crafted .FLV file, which triggers an overflow in demuxers/demux_flv.c; (2) a crafted .MOV file, wh...
Xine Xine-lib 1.1.11
1 EDB exploit
7.5
CVSSv2
CVE-2009-0698
Integer overflow in the 4xm demuxer (demuxers/demux_4xm.c) in xine-lib 1.1.16.1 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a 4X movie file with a large current_track value, a similar issue to CVE-2009-0385.
Xine Xine-lib 1.1.16.1
6.8
CVSSv2
CVE-2008-0073
Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.
Xine Xine-lib 1.1.10.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »