Multiple heap-based buffer overflows in the code used to handle (1) MMS over TCP (MMST) streams or (2) RealMedia RTSP streams in xine-lib prior to 1.0, and other products that use xine-lib such as MPlayer 1.0pre6 and previous versions, allow remote malicious servers to execute arbitrary code.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xine xine-lib 1_beta11 |
||
xine xine-lib 1_beta2 |
||
xine xine-lib 1_beta9 |
||
xine xine-lib 1_rc2 |
||
xine xine-lib 1_beta5 |
||
xine xine-lib 1_beta6 |
||
xine xine-lib 1_rc3c |
||
mplayer mplayer |
||
xine xine-lib 1_beta1 |
||
xine xine-lib 1_beta10 |
||
xine xine-lib 1_beta7 |
||
xine xine-lib 1_beta8 |
||
xine xine-lib 1_beta3 |
||
xine xine-lib 1_beta4 |
||
xine xine-lib 1_rc3a |
||
xine xine-lib 1_rc3b |