Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2005-2967

Published: 14/10/2005 Updated: 11/07/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Xine-lib

Vulnerability Summary

Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 up to and including 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.

Vulnerable Product Search on Vulmon Subscribe to Product

xine xine-lib 1.0

xine xine-lib 1.0.1

xine xine-lib 0.9.13

xine xine-lib 1.0.2

xine xine-lib 1.1.0

Vendor Advisories

Debian Security Advisories: DSA-863-1 xine-lib -- format string vulnerability
Ulf Härnhammar from the Debian Security Audit Project discovered a format string vulnerability in the CDDB processing component of xine-lib, the xine video/media player library, that could lead to the execution of arbitrary code caused by a malicious CDDB entry For the old stable distribution (woody) this problem has been fixed in version 098-2 ...

Exploits

Exploit DB: Xine-Lib 1.1 - 'Media Player Library' Remote Format String
#!/usr/bin/perl -- # When playing an Audio CD, using xine-lib based media application, # the library contacts a CDDB server to retrieve metadata like the # title and artist's name During processing of this data, a response # from the server, which is located in memory on the stack, is passed # to the fprintf() function as a format string # An ...

References

NVD-CWE-Otherhttp://xinehq.de/index.php/security/XSA-2005-1http://www.debian.org/security/2005/dsa-863http://www.gentoo.org/security/en/glsa/glsa-200510-08.xmlhttp://www.securityfocus.com/bid/15044http://secunia.com/advisories/17099/http://www.mandriva.com/security/advisories?name=MDKSA-2005:180http://www.ubuntu.com/usn/usn-196-1http://secunia.com/advisories/17132http://secunia.com/advisories/17162http://secunia.com/advisories/17179http://secunia.com/advisories/17097http://www.novell.com/linux/security/advisories/2005_24_sr.htmlhttp://secunia.com/advisories/17111http://secunia.com/advisories/17282http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0196.htmlhttp://www.osvdb.org/19892http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.415454https://exchange.xforce.ibmcloud.com/vulnerabilities/22545https://nvd.nist.govhttps://www.debian.org/security/./dsa-863https://www.exploit-db.com/exploits/1242/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook