Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine-lib vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2008-1482
Multiple integer overflows in xine-lib 1.1.11 and previous versions allow remote malicious users to trigger heap-based buffer overflows and possibly execute arbitrary code via (1) a crafted .FLV file, which triggers an overflow in demuxers/demux_flv.c; (2) a crafted .MOV file, wh...
Xine Xine-lib 1.1.11
1 EDB exploit
6.8
CVSSv2
CVE-2008-0073
Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.
Xine Xine-lib 1.1.10.1
1 EDB exploit
6.8
CVSSv2
CVE-2008-1110
Buffer overflow in demuxers/demux_asf.c (aka the ASF demuxer) in the xineplug_dmx_asf.so plugin in xine-lib prior to 1.1.10 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a crafted ASF header. NOTE: this issue leads to a crash whe...
Xine Xine-plugin
Xine Xine-lib
1 EDB exploit
6.8
CVSSv2
CVE-2007-1387
The DirectShow loader (loader/dshow/DS_VideoDecoder.c) in MPlayer 1.0rc1 and previous versions, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote malicious users to cause a buffer overflow and possibly execute arbitrary code, a...
Mplayer Mplayer
6.4
CVSSv2
CVE-2008-0225
Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and previous versions allows remote malicious users to execute arbitrary code via the SDP Abstract attribute in an RTSP session, related to the rmff_dump_header function and relate...
Xine Xine-lib
1 EDB exploit
5.1
CVSSv2
CVE-2006-2200
Stack-based buffer overflow in libmms, as used by (a) MiMMS 0.0.9 and (b) xine-lib 1.1.0 and previous versions, allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via the (1) send_command, (2) string_utf16, (3) get_d...
Xine Xine-lib 1.1.0
Mimms Mimms 0.0.9
5.1
CVSSv2
CVE-2004-1455
Stack-based buffer overflow in Xine-lib-rc5 in xine-lib 1_rc5-r2 and previous versions allows remote malicious users to execute arbitrary code via crafted playlists that result in a long vcd:// URL.
Xine Xine-lib 1 Beta1
Xine Xine-lib 1 Beta7
Xine Xine-lib 1 Beta8
Xine Xine-lib 1 Rc5
Xine Xine-lib 1 Rc5 R2
Xine Xine-lib 1 Beta5
Xine Xine-lib 1 Beta6
Xine Xine-lib 1 Rc3c
Xine Xine-lib 1 Rc4
Xine Xine-lib 1 Beta10
Xine Xine-lib 1 Beta11
Xine Xine-lib 1 Beta9
Xine Xine-lib 1 Rc2
Xine Xine-lib 1 Beta2
Xine Xine-lib 1 Beta3
Xine Xine-lib 1 Beta4
Xine Xine-lib 1 Rc3a
Xine Xine-lib 1 Rc3b
5.1
CVSSv2
CVE-2004-1475
Multiple stack-based buffer overflows in xine-lib 1-rc2 through 1-rc5 allow malicious users to execute arbitrary code via (1) long VideoCD vcd:// MRLs or (2) long subtitle lines.
Xine Xine-lib 0.99
Xine Xine 1 Rc3
Xine Xine 1 Rc4
Xine Xine-lib 1 Rc4
Xine Xine-lib 1 Rc5
Xine Xine 0.9.18
Xine Xine 1 Rc2
Xine Xine-lib 1 Rc2
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc5
1 EDB exploit
5.1
CVSSv2
CVE-2004-1476
Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows malicious users to execute arbitrary code via a VideoCD with an unterminated disk label.
Xine Xine 0.9.18
Xine Xine 1 Rc2
Xine Xine-lib 0.99
Xine Xine-lib 1 Rc2
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc5
Xine Xine-lib 1 Rc4
Xine Xine-lib 1 Rc5
Xine Xine 1 Rc3
Xine Xine 1 Rc4
Suse Suse Linux 8.2
Suse Suse Linux 9.0
Suse Suse Linux 9.2
Suse Suse Linux 8.0
Suse Suse Linux 8.1
Suse Suse Linux 9.1
5
CVSSv2
CVE-2009-1274
Integer overflow in the qt_error parse_trak_atom function in demuxers/demux_qt.c in xine-lib 1.1.16.2 and previous versions allows remote malicious users to execute arbitrary code via a Quicktime movie file with a large count value in an STTS atom, which triggers a heap-based buf...
Xine Xine-lib 1.1.11
Xine Xine-lib 1.1.11.1
Xine Xine-lib 1.1.10
Xine Xine-lib 1.1.14
Xine Xine-lib 1.1.13
Xine Xine-lib 1.1.16.1
Xine Xine-lib 1.1.16.2
Xine Xine-lib 1.1.15
Xine Xine-lib 1.1.12
Xine Xine-lib 1.1.1
Xine Xine-lib 1.1.10.1
Xine Xine-lib 1.1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »