Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-2967
Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 up to and including 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.
Xine Xine-lib 1.0
Xine Xine-lib 1.0.1
Xine Xine-lib 0.9.13
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-4799
Buffer overflow in ffmpeg for xine-lib prior to 1.1.2 might allow context-dependent malicious users to execute arbitrary code via a crafted AVI file and "bad indexes", a different vulnerability than CVE-2005-4048 and CVE-2006-2802.
Xine Xine-lib 1.0.1
Xine Xine-lib 1.0.2
Xine Xine-lib 1.1.0
Xine Xine-lib
5
CVSSv2
CVE-2006-2802
Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote malicious users to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.
Xine Xine-lib 1.0.1
Xine Xine-lib 1.0.2
Xine Gxine 0.5.6
Xine Xine-lib 1.1.0
Xine Xine-lib 1.1.1
1 EDB exploit
5.1
CVSSv2
CVE-2004-1476
Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows malicious users to execute arbitrary code via a VideoCD with an unterminated disk label.
Xine Xine 0.9.18
Xine Xine 1 Rc2
Xine Xine-lib 0.99
Xine Xine-lib 1 Rc2
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc5
Xine Xine-lib 1 Rc4
Xine Xine-lib 1 Rc5
Xine Xine 1 Rc3
Xine Xine 1 Rc4
Suse Suse Linux 8.2
Suse Suse Linux 9.0
Suse Suse Linux 9.2
Suse Suse Linux 8.0
Suse Suse Linux 8.1
Suse Suse Linux 9.1
6.8
CVSSv2
CVE-2008-1110
Buffer overflow in demuxers/demux_asf.c (aka the ASF demuxer) in the xineplug_dmx_asf.so plugin in xine-lib prior to 1.1.10 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a crafted ASF header. NOTE: this issue leads to a crash whe...
Xine Xine-plugin
Xine Xine-lib
1 EDB exploit
9.3
CVSSv2
CVE-2008-1686
Array index vulnerability in Speex 1.1.12 and previous versions, as used in libfishsound 0.9.0 and previous versions, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib prior to 1.1.12, and many other products, allows remote malicious users to exec...
Xine Xine-lib 1.1.10
Xine Xine-lib 1.1.1
Xine Xine-lib 0.9.8
Xine Xine-lib 0.9.13
Xine Xine-lib
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.0
Xine Xine-lib 0.99
Xine Xine-lib 1.1.0
Xine Xine-lib 1.0.3a
Xine Xine-lib 1.1.11
Xine Xine-lib 1.0.2
Xine Xine-lib 1.0.1
Xiph Speex 1.1.9
Xiph Speex 1.1.8
Xiph Speex 1.0.5
Xiph Speex 1.0.3
Xiph Speex 1.1.2
Xiph Speex 1.1.11
Xiph Speex 1.1.10
Xiph Speex 1.1.4
Xiph Speex 1.1.3
7.5
CVSSv2
CVE-2005-1692
Format string vulnerability in gxine 0.4.1 up to and including 0.4.4, and other versions down to 0.3, allows remote malicious users to execute arbitrary code via a ram file with a URL whose hostname contains format string specifiers.
Xine Gxine 0.44
Xine Gxine 0.41
Xine Gxine 0.43
Xine Gxine 0.42
10
CVSSv2
CVE-2007-0254
Format string vulnerability in the errors_create_window function in errors.c in xine-ui allows malicious users to execute arbitrary code via unknown vectors.
Xine Xine-ui
9.3
CVSSv2
CVE-2007-0255
XINE 0.99.4 allows user-assisted remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a certain M3U file that contains a long #EXTINF line and contains format string specifiers in an invalid udp:// URI, possibly a variant...
Xine Xine 0.99.4
6.4
CVSSv2
CVE-2008-0225
Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and previous versions allows remote malicious users to execute arbitrary code via the SDP Abstract attribute in an RTSP session, related to the rmff_dump_header function and relate...
Xine Xine-lib
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »