CVE-2004-1475

Multiple stack-based buffer overflows in xine-lib 1-rc2 through 1-rc5 allow attackers to execute arbitrary code via (1) long VideoCD vcd:// MRLs or (2) long subtitle lines.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:xine:xine:0.9.18:*:*:*:*:*:*:*
cpe:2.3:a:xine:xine:1_rc2:*:*:*:*:*:*:*
cpe:2.3:a:xine:xine:1_rc3:*:*:*:*:*:*:*
cpe:2.3:a:xine:xine:1_rc4:*:*:*:*:*:*:*
cpe:2.3:a:xine:xine:1_rc5:*:*:*:*:*:*:*
cpe:2.3:a:xine:xine-lib:0.99:*:*:*:*:*:*:*
cpe:2.3:a:xine:xine-lib:1_rc2:*:*:*:*:*:*:*
cpe:2.3:a:xine:xine-lib:1_rc3:*:*:*:*:*:*:*
cpe:2.3:a:xine:xine-lib:1_rc4:*:*:*:*:*:*:*
cpe:2.3:a:xine:xine-lib:1_rc5:*:*:*:*:*:*:*

History

20 Nov 2024, 23:50

Type Values Removed Values Added
References () http://security.gentoo.org/glsa/glsa-200408-18.xml - Patch () http://security.gentoo.org/glsa/glsa-200408-18.xml - Patch
References () http://www.gentoo.org/security/en/glsa/glsa-200409-30.xml - Patch () http://www.gentoo.org/security/en/glsa/glsa-200409-30.xml - Patch
References () http://www.securityfocus.com/archive/1/375485/2004-09-02/2004-09-08/0 - Vendor Advisory () http://www.securityfocus.com/archive/1/375485/2004-09-02/2004-09-08/0 - Vendor Advisory
References () http://www.securityfocus.com/bid/11206 - Patch () http://www.securityfocus.com/bid/11206 - Patch
References () http://xinehq.de/index.php/security/XSA-2004-4 - () http://xinehq.de/index.php/security/XSA-2004-4 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/17430 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/17430 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/17432 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/17432 -

Information

Published : 2004-12-31 05:00

Updated : 2024-11-20 23:50


NVD link : CVE-2004-1475

Mitre link : CVE-2004-1475

CVE.ORG link : CVE-2004-1475


JSON object : View

Products Affected

xine

  • xine
  • xine-lib