cbcvebase.

Xine Xine-Lib vulnerabilities

38 known vulnerabilities affecting xine/xine-lib.

Total CVEs
38
CISA KEV
0
Public exploits
11
Exploited in wild
0
Severity breakdown
CRITICAL9HIGH9MEDIUM20

Vulnerabilities

Page 1 of 2
CVE-2008-1878P3HIGHCVSS 7.5PoC≤ 1.1.12v1.1.0+6 more2008-04-17
CVE-2008-1878 [HIGH] CWE-119 CVE-2008-1878: Stack-based buffer overflow in the demux_nsf_send_chunk function in src/demuxers/demux_nsf.c in xine Stack-based buffer overflow in the demux_nsf_send_chunk function in src/demuxers/demux_nsf.c in xine-lib 1.1.12 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long NSF title.
nvd
CVE-2005-2967P3HIGHCVSS 7.5PoCv0.9.13v1.0+3 more2005-10-14
CVE-2005-2967 [HIGH] CVE-2005-2967: Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 through 1 Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 through 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.
nvd
CVE-2006-1664P3HIGHCVSS 7.5PoCv0.9.13v1.0+5 more2006-04-07
CVE-2006-1664 [HIGH] CVE-2006-1664: Buffer overflow in xine_list_delete_current in libxine 1.14 and earlier, as distributed in xine-lib Buffer overflow in xine_list_delete_current in libxine 1.14 and earlier, as distributed in xine-lib 1.1.1 and earlier, allows remote attackers to execute arbitrary code via a crafted MPEG stream.
nvd
CVE-2008-0225P3MEDIUMCVSS 6.4PoC≤ 1.1.92008-01-10
CVE-2008-0225 [MEDIUM] CWE-119 CVE-2008-0225: Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and earlier allows remote attackers to execute arbitrary code via the SDP Abstract attribute in an RTSP session, related to the rmff_dump_header function and related to disregarding the max field. NOTE: some of these details are obtained from third party
nvd
CVE-2008-0073P3MEDIUMCVSS 6.8PoCv1.1.10.12008-03-24
CVE-2008-0073 [MEDIUM] CWE-189 CVE-2008-0073: Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allo Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.
nvd
CVE-2008-1110P3MEDIUMCVSS 6.8PoC≤ 1.1.92008-02-29
CVE-2008-1110 [MEDIUM] CVE-2008-1110: Buffer overflow in demuxers/demux_asf.c (aka the ASF demuxer) in the xineplug_dmx_asf.so plugin in x Buffer overflow in demuxers/demux_asf.c (aka the ASF demuxer) in the xineplug_dmx_asf.so plugin in xine-lib before 1.1.10 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a crafted ASF header. NOTE: this issue leads to a crash when an attack uses the CVE-2006-1664 exploit code, but it is different from CVE-2006-1664.
nvd
CVE-2008-1482P3MEDIUMCVSS 6.8PoCv1.1.112008-03-24
CVE-2008-1482 [MEDIUM] CWE-119 CVE-2008-1482: Multiple integer overflows in xine-lib 1.1.11 and earlier allow remote attackers to trigger heap-bas Multiple integer overflows in xine-lib 1.1.11 and earlier allow remote attackers to trigger heap-based buffer overflows and possibly execute arbitrary code via (1) a crafted .FLV file, which triggers an overflow in demuxers/demux_flv.c; (2) a crafted .MOV file, which triggers an overflow in demuxers/demux_qt.c; (3) a crafted .RM file, which triggers a
nvd
CVE-2004-1300P3CRITICALCVSS 10.0PoCv1_rc72005-01-10
CVE-2004-1300 [CRITICAL] CVE-2004-1300: Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows r Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows remote attackers to execute arbitrary code via a crafted AIFF file.
nvd
CVE-2004-1951P4MEDIUMCVSS 5.0PoCv1_rc2v1_rc3a+2 more2004-12-31
CVE-2004-1951 [MEDIUM] CVE-2004-1951: xine 1.x alpha, 1.x beta, and 1.0rc through 1.0rc3a, and xine-ui 0.9.21 to 0.9.23 allows remote atta xine 1.x alpha, 1.x beta, and 1.0rc through 1.0rc3a, and xine-ui 0.9.21 to 0.9.23 allows remote attackers to overwrite arbitrary files via the (1) audio.sun_audio_device or (2) dxr3.devicename options in an MRL link.
nvd
CVE-2004-1475P4MEDIUMCVSS 5.1PoCv0.99v1_rc2+3 more2004-12-31
CVE-2004-1475 [MEDIUM] CVE-2004-1475: Multiple stack-based buffer overflows in xine-lib 1-rc2 through 1-rc5 allow attackers to execute arb Multiple stack-based buffer overflows in xine-lib 1-rc2 through 1-rc5 allow attackers to execute arbitrary code via (1) long VideoCD vcd:// MRLs or (2) long subtitle lines.
nvd
CVE-2006-2802P4MEDIUMCVSS 5.0PoCv1.0.1v1.0.2+2 more2006-06-03
CVE-2006-2802 [MEDIUM] CVE-2006-2802: Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.
nvd
CVE-2008-1686P3CRITICALCVSS 9.3≤ 1.1.11.1v0.9.8+11 more2008-04-08
CVE-2008-1686 [CRITICAL] CWE-189 CVE-2008-1686: Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, in Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows remote attackers to execute arbitrary code via a header structure containing a negative offset, which is used to dereferenc
nvd
CVE-2008-5234P3CRITICALCVSS 9.3≤ 1.1.14v0.9.13+34 more2008-11-26
CVE-2008-5234 [CRITICAL] CWE-119 CVE-2008-5234: Multiple heap-based buffer overflows in xine-lib 1.1.12, and other versions before 1.1.15, allow rem Multiple heap-based buffer overflows in xine-lib 1.1.12, and other versions before 1.1.15, allow remote attackers to execute arbitrary code via vectors related to (1) a crafted metadata atom size processed by the parse_moov_atom function in demux_qt.c and (2) frame reading in the id3v23_interp_frame function in id3.c. NOTE: as of 20081122, it is pos
nvd
CVE-2008-5246P3CRITICALCVSS 9.3≤ 1.1.14v0.9.13+34 more2008-11-26
CVE-2008-5246 [CRITICAL] CWE-119 CVE-2008-5246: Multiple heap-based buffer overflows in xine-lib before 1.1.15 allow remote attackers to execute arb Multiple heap-based buffer overflows in xine-lib before 1.1.15 allow remote attackers to execute arbitrary code via vectors that send ID3 data to the (1) id3v22_interp_frame and (2) id3v24_interp_frame functions in src/demuxers/id3.c. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd
CVE-2008-0486P3HIGHCVSS 7.5v1.1.102008-02-05
CVE-2008-0486 [HIGH] CWE-189 CVE-2008-0486: Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and p Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow.
nvd
CVE-2008-0238P3HIGHCVSS 7.5≤ 1.1.92008-01-11
CVE-2008-0238 [HIGH] CVE-2008-0238: Multiple heap-based buffer overflows in the rmff_dump_cont function in input/libreal/rmff.c in xine- Multiple heap-based buffer overflows in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 allow remote attackers to execute arbitrary code via the SDP (1) Title, (2) Author, or (3) Copyright attribute, related to the rmff_dump_header function, different vectors than CVE-2008-0225. NOTE: the provenance of this information is unknown; the deta
nvd
CVE-2004-1379P3HIGHCVSS 7.5v0.9.8v1_beta2+17 more2004-09-16
CVE-2004-1379 [HIGH] CVE-2004-1379: Heap-based buffer overflow in the DVD subpicture decoder in xine xine-lib 1-rc5 and earlier allows r Heap-based buffer overflow in the DVD subpicture decoder in xine xine-lib 1-rc5 and earlier allows remote attackers to execute arbitrary code via a (1) DVD or (2) MPEG subpicture header where the second field reuses RLE data from the end of the first field.
nvd
CVE-2004-1187P4CRITICALCVSS 10.0v0.9.8v0.9.13+26 more2005-01-10
CVE-2004-1187 [CRITICAL] CVE-2004-1187: Heap-based buffer overflow in the pnm_get_chunk function for xine 0.99.2, and other packages such as Heap-based buffer overflow in the pnm_get_chunk function for xine 0.99.2, and other packages such as MPlayer that use the same code, allows remote attackers to execute arbitrary code via long PNA_TAG values, a different vulnerability than CVE-2004-1188.
nvd
CVE-2004-0433P4CRITICALCVSS 10.0v1_beta1v1_beta2+13 more2004-08-18
CVE-2004-0433 [CRITICAL] CVE-2004-0433: Multiple buffer overflows in the Real-Time Streaming Protocol (RTSP) client for (1) MPlayer before 1 Multiple buffer overflows in the Real-Time Streaming Protocol (RTSP) client for (1) MPlayer before 1.0pre4 and (2) xine lib (xine-lib) before 1-rc4, when playing Real RTSP (realrtsp) streams, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (a) long URLs, (b) long Real server responses, or (c) long Real Dat
nvd
CVE-2009-1274P3MEDIUMCVSS 5.0v1.1.0v1.1.1+10 more2009-04-08
CVE-2009-1274 [MEDIUM] CWE-119 CVE-2009-1274: Integer overflow in the qt_error parse_trak_atom function in demuxers/demux_qt.c in xine-lib 1.1.16. Integer overflow in the qt_error parse_trak_atom function in demuxers/demux_qt.c in xine-lib 1.1.16.2 and earlier allows remote attackers to execute arbitrary code via a Quicktime movie file with a large count value in an STTS atom, which triggers a heap-based buffer overflow.
nvd
Xine Xine-Lib vulnerabilities | cvebase