Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine xine-lib 1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-4048
Heap-based buffer overflow in the avcodec_default_get_buffer function (utils.c) in FFmpeg libavcodec 0.4.9-pre1 and previous versions, as used in products such as (1) mplayer, (2) xine-lib, (3) Xmovie, and (4) GStreamer, allows remote malicious users to execute arbitrary commands...
Ffmpeg Ffmpeg 0.4.8
Ffmpeg Ffmpeg 0.4.9
Ffmpeg Ffmpeg 0.4.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg Cvs
7.5
CVSSv2
CVE-2005-2967
Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 up to and including 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.
Xine Xine-lib 1.0
Xine Xine-lib 1.0.1
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.0
1 EDB exploit
7.5
CVSSv2
CVE-2005-2337
Ruby 1.6.x up to 1.6.8, 1.8.x up to 1.8.2, and 1.9.0 development up to 2005-09-01 allows malicious users to bypass safe level and taint flag protections and execute disallowed code when Ruby processes a program through standard input (stdin).
Yukihiro Matsumoto Ruby 1.6.1
Yukihiro Matsumoto Ruby 1.6.2
Yukihiro Matsumoto Ruby 1.8.1
Yukihiro Matsumoto Ruby 1.8.2 Pre1
Yukihiro Matsumoto Ruby 1.6.3
Yukihiro Matsumoto Ruby 1.6.4
Yukihiro Matsumoto Ruby 1.8.2 Pre2
Yukihiro Matsumoto Ruby 1.6
Yukihiro Matsumoto Ruby 1.6.7
Yukihiro Matsumoto Ruby 1.8
Yukihiro Matsumoto Ruby 1.6.5
Yukihiro Matsumoto Ruby 1.6.6
7.5
CVSSv2
CVE-2005-1195
Multiple heap-based buffer overflows in the code used to handle (1) MMS over TCP (MMST) streams or (2) RealMedia RTSP streams in xine-lib prior to 1.0, and other products that use xine-lib such as MPlayer 1.0pre6 and previous versions, allow remote malicious servers to execute ar...
Xine Xine-lib 1 Beta11
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta9
Xine Xine-lib 1 Rc2
Xine Xine-lib 1 Beta5
Xine Xine-lib 1 Beta6
Xine Xine-lib 1 Rc3c
Mplayer Mplayer
Xine Xine-lib 1 Beta1
Xine Xine-lib 1 Beta10
Xine Xine-lib 1 Beta7
Xine Xine-lib 1 Beta8
Xine Xine-lib 1 Beta3
Xine Xine-lib 1 Beta4
Xine Xine-lib 1 Rc3a
Xine Xine-lib 1 Rc3b
7.5
CVSSv2
CVE-2004-1379
Heap-based buffer overflow in the DVD subpicture decoder in xine xine-lib 1-rc5 and previous versions allows remote malicious users to execute arbitrary code via a (1) DVD or (2) MPEG subpicture header where the second field reuses RLE data from the end of the first field.
Xine Xine-lib 0.9.8
Xine Xine-lib 1 Beta7
Xine Xine-lib 1 Beta8
Xine Xine-lib 1 Rc3c
Xine Xine-lib 1 Rc4
Xine Xine 1 Beta2
Xine Xine 1 Beta3
Xine Xine 1 Rc0
Xine Xine 1 Rc0a
Xine Xine-lib 1 Beta3
Xine Xine-lib 1 Beta4
Xine Xine-lib 1 Rc1
Xine Xine-lib 1 Rc2
Xine Xine 1 Beta1
Xine Xine 1 Beta10
Xine Xine 1 Beta6
Xine Xine 1 Beta7
Xine Xine 1 Rc3
Xine Xine 1 Rc3a
Xine Xine 1 Rc3b
Xine Xine-lib 1 Beta12
Xine Xine-lib 1 Beta2
7.1
CVSSv2
CVE-2008-5238
Integer overflow in the real_parse_mdpr function in demux_real.c in xine-lib 1.1.12, and other versions prior to 1.1.15, allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted stream_name_size field.
Xine Xine 1.0.1
Xine Xine 1.0
Xine Xine 1
Xine Xine 1.1.1
Xine Xine 1.1.0
Xine Xine 1.1.11.1
Xine Xine 1.1.10.1
Xine Xine 1.1.3
Xine Xine 1.1.2
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.0.3a
Xine Xine 1.0.2
Xine Xine
Xine Xine 1.1.4
6.8
CVSSv2
CVE-2008-5242
demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, does not validate the count field before calling calloc for STSD_ATOM atom allocation, which allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a...
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.10
Xine Xine-lib 1.1.4
Xine Xine-lib 1.1.3
Xine Xine-lib 1.0
Xine Xine-lib 1
Xine Xine-lib 1 Beta9
Xine Xine-lib 1 Beta8
Xine Xine-lib 1 Beta1
Xine Xine-lib 0.9.13
Xine Xine-lib 1.1.14
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.1.11
Xine Xine-lib 1.1.6
Xine Xine-lib 1.1.5
Xine Xine-lib 1.0.2
Xine Xine-lib 1.0.1
Xine Xine-lib 1 Beta11
Xine Xine-lib 1 Beta10
Xine Xine-lib 1 Beta3
Xine Xine-lib 1 Beta2
Xine Xine-lib 1.1.9
6.8
CVSSv2
CVE-2008-0073
Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.
Xine Xine-lib 1.1.10.1
1 EDB exploit
6.8
CVSSv2
CVE-2008-1482
Multiple integer overflows in xine-lib 1.1.11 and previous versions allow remote malicious users to trigger heap-based buffer overflows and possibly execute arbitrary code via (1) a crafted .FLV file, which triggers an overflow in demuxers/demux_flv.c; (2) a crafted .MOV file, wh...
Xine Xine-lib 1.1.11
1 EDB exploit
6.8
CVSSv2
CVE-2007-1387
The DirectShow loader (loader/dshow/DS_VideoDecoder.c) in MPlayer 1.0rc1 and previous versions, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote malicious users to cause a buffer overflow and possibly execute arbitrary code, a...
Mplayer Mplayer
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »