Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xine xine-lib 1 rc3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-1475
Multiple stack-based buffer overflows in xine-lib 1-rc2 through 1-rc5 allow malicious users to execute arbitrary code via (1) long VideoCD vcd:// MRLs or (2) long subtitle lines.
Xine Xine 0.9.18
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc4
Xine Xine-lib 1 Rc5
Xine Xine 1 Rc2
Xine Xine-lib 1 Rc2
Xine Xine 1 Rc5
Xine Xine-lib 0.99
Xine Xine 1 Rc3
Xine Xine-lib 1 Rc4
1 EDB exploit
NA
CVE-2004-1379
Heap-based buffer overflow in the DVD subpicture decoder in xine xine-lib 1-rc5 and previous versions allows remote malicious users to execute arbitrary code via a (1) DVD or (2) MPEG subpicture header where the second field reuses RLE data from the end of the first field.
Xine Xine 1 Beta9
Xine Xine 1 Beta3
Xine Xine 1 Rc0a
Xine Xine-lib 1 Beta7
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc4
Xine Xine-lib 1 Beta9
Xine Xine 1 Alpha
Xine Xine-lib 1 Rc3b
Xine Xine 1 Beta4
Xine Xine-lib 0.9.8
Xine Xine-lib 1 Beta4
Xine Xine-lib 1 Rc5
Xine Xine 1 Rc3b
Xine Xine 1 Beta2
Xine Xine 1 Rc3a
Xine Xine 1 Rc2
Xine Xine-lib 1 Rc3c
Xine Xine 1 Beta10
Xine Xine 1 Beta12
Xine Xine 1 Beta11
Xine Xine 1 Beta7
NA
CVE-2004-1476
Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows malicious users to execute arbitrary code via a VideoCD with an unterminated disk label.
Xine Xine 0.9.18
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc4
Xine Xine-lib 1 Rc5
Xine Xine 1 Rc2
Xine Xine-lib 1 Rc2
Xine Xine 1 Rc5
Xine Xine-lib 0.99
Xine Xine 1 Rc3
Xine Xine-lib 1 Rc4
Suse Suse Linux 9.0
Suse Suse Linux 8.0
Suse Suse Linux 9.2
Suse Suse Linux 9.1
Suse Suse Linux 8.2
Suse Suse Linux 8.1
NA
CVE-2004-1187
Heap-based buffer overflow in the pnm_get_chunk function for xine 0.99.2, and other packages such as MPlayer that use the same code, allows remote malicious users to execute arbitrary code via long PNA_TAG values, a different vulnerability than CVE-2004-1188.
Xine Xine 1 Rc6a
Xine Xine 1 Beta9
Mplayer Mplayer 0.92
Xine Xine 0.9.18
Xine Xine 1 Beta3
Xine Xine 1 Rc0a
Xine Xine-lib 1 Beta7
Mplayer Mplayer 1.0 Pre2
Mplayer Mplayer 0.90
Xine Xine 1 Rc7
Mplayer Mplayer 1.0 Pre1
Mplayer Mplayer 0.90 Rc
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc4
Xine Xine-lib 1 Beta9
Mplayer Mplayer 1.0 Pre5try2
Xine Xine 1 Alpha
Xine Xine-lib 1 Rc3b
Xine Xine-lib 1 Alpha
Xine Xine 1 Beta4
Mplayer Mplayer Head Cvs
Mplayer Mplayer 0.92.1
NA
CVE-2004-1188
The pnm_get_chunk function in xine 0.99.2 and previous versions, and other packages such as MPlayer that use the same code, does not properly verify that the chunk size is less than the PREAMBLE_SIZE, which causes a read operation with a negative length that leads to a buffer ove...
Xine Xine 1 Rc6a
Xine Xine 1 Beta9
Mplayer Mplayer 0.92
Xine Xine 0.9.18
Xine Xine 1 Beta3
Xine Xine 1 Rc0a
Xine Xine-lib 1 Beta7
Mplayer Mplayer 1.0 Pre2
Mplayer Mplayer 0.90
Xine Xine 1 Rc7
Mplayer Mplayer 1.0 Pre1
Mplayer Mplayer 0.90 Rc
Xine Xine-lib 1 Rc3
Xine Xine 1 Rc4
Xine Xine-lib 1 Beta9
Mplayer Mplayer 1.0 Pre5try2
Xine Xine 1 Alpha
Xine Xine-lib 1 Rc3b
Xine Xine-lib 1 Alpha
Xine Xine 1 Beta4
Mplayer Mplayer Head Cvs
Mplayer Mplayer 0.92.1
NA
CVE-2004-1951
xine 1.x alpha, 1.x beta, and 1.0rc up to and including 1.0rc3a, and xine-ui 0.9.21 to 0.9.23 allows remote malicious users to overwrite arbitrary files via the (1) audio.sun_audio_device or (2) dxr3.devicename options in an MRL link.
Xine Xine 1 Beta9
Xine Xine 1 Beta3
Xine Xine 1 Rc0a
Xine Xine-lib 1 Rc3b
Xine Xine 1 Beta4
Xine Xine 1 Rc3b
Xine Xine 1 Beta2
Xine Xine 0.9.8
Xine Xine 1 Rc3a
Xine Xine-ui 0.9.21
Xine Xine 1 Rc2
Xine Xine-lib 1 Rc3c
Xine Xine 1 Beta10
Xine Xine 1 Beta12
Xine Xine-ui 0.9.23
Xine Xine 1 Beta11
Xine Xine 1 Beta7
Xine Xine 1 Beta8
Xine Xine 0.9.13
Xine Xine 1 Rc1
Xine Xine-lib 1 Rc2
Xine Xine 1 Beta6
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started