Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine xine-lib 1.1.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5236
Multiple heap-based buffer overflows in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, allow remote malicious users to execute arbitrary code via vectors related to (1) a crafted EBML element length processed by the parse_block_group function in demux_matroska....
Xine Xine 1
Xine Xine 1.1.10.1
Xine Xine 1.0.1
Xine Xine 1.1.0
Xine Xine 1.1.1
Xine Xine 1.0.3a
Xine Xine 1.1.3
Xine Xine 1.0.2
Xine Xine 1.0
Xine Xine 1.1.11.1
Xine Xine
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.1.2
Xine Xine 1.1.4
NA
CVE-2008-5237
Multiple integer overflows in xine-lib 1.1.12, and other 1.1.15 and previous versions versions, allow remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via (1) crafted width and height values that are not validated by the mymng_process...
Xine Xine 1
Xine Xine 1.1.10.1
Xine Xine 1.0.1
Xine Xine 1.1.0
Xine Xine 1.1.1
Xine Xine 1.0.3a
Xine Xine 1.1.3
Xine Xine 1.0.2
Xine Xine 1.0
Xine Xine 1.1.11.1
Xine Xine
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.1.2
Xine Xine 1.1.4
NA
CVE-2008-5238
Integer overflow in the real_parse_mdpr function in demux_real.c in xine-lib 1.1.12, and other versions prior to 1.1.15, allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted stream_name_size field.
Xine Xine 1
Xine Xine 1.1.10.1
Xine Xine 1.0.1
Xine Xine 1.1.0
Xine Xine 1.1.1
Xine Xine 1.0.3a
Xine Xine 1.1.3
Xine Xine 1.0.2
Xine Xine 1.0
Xine Xine 1.1.11.1
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.1.2
Xine Xine
Xine Xine 1.1.4
NA
CVE-2008-5235
Heap-based buffer overflow in the demux_real_send_chunk function in src/demuxers/demux_real.c in xine-lib prior to 1.1.15 allows remote malicious users to execute arbitrary code via a crafted Real Media file. NOTE: some of these details are obtained from third party information.
Xine Xine 1
Xine Xine 1.1.10.1
Xine Xine 1.0.1
Xine Xine 1.1.0
Xine Xine 1.1.1
Xine Xine 1.0.3a
Xine Xine
Xine Xine 1.1.3
Xine Xine 1.0.2
Xine Xine 1.0
Xine Xine 1.1.11.1
Xine Xine 0.9.13
Xine Xine 1.1.11
Xine Xine 1.1.2
NA
CVE-2006-6172
Buffer overflow in the asmrp_eval function in the RealMedia RTSP stream handler (asmrp.c) for Real Media input plugin, as used in (1) xine/xine-lib, (2) MPlayer 1.0rc1 and previous versions, and possibly others, allows remote malicious users to cause a denial of service and possi...
Mplayer Mplayer
Xine Real Media Input Plugin
NA
CVE-2006-4800
Multiple buffer overflows in libavcodec in ffmpeg prior to 0.4.9_p20060530 allow remote malicious users to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tt...
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.4.6
Ffmpeg Ffmpeg 0.4.8
Ffmpeg Ffmpeg 0.4.9
NA
CVE-2008-1161
Buffer overflow in the Matroska demuxer (demuxers/demux_matroska.c) in xine-lib prior to 1.1.10.1 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a Matroska file with invalid frame sizes.
Matroska Demuxer
NA
CVE-2007-1387
The DirectShow loader (loader/dshow/DS_VideoDecoder.c) in MPlayer 1.0rc1 and previous versions, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote malicious users to cause a buffer overflow and possibly execute arbitrary code, a...
Mplayer Mplayer
NA
CVE-2007-1246
The DMO_VideoDecoder_Open function in loader/dmo/DMO_VideoDecoder.c in MPlayer 1.0rc1 and previous versions, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote malicious users to cause a buffer overflow and possibly execute arbi...
Mplayer Mplayer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3