Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows attackers to execute arbitrary code via a VideoCD with an unterminated disk label.
References
Link | Resource |
---|---|
http://www.gentoo.org/security/en/glsa/glsa-200409-30.xml | Patch Vendor Advisory |
http://www.securityfocus.com/archive/1/375485/2004-09-02/2004-09-08/0 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/11206 | Patch |
http://xinehq.de/index.php/security/XSA-2004-4 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/17431 | |
http://www.gentoo.org/security/en/glsa/glsa-200409-30.xml | Patch Vendor Advisory |
http://www.securityfocus.com/archive/1/375485/2004-09-02/2004-09-08/0 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/11206 | Patch |
http://xinehq.de/index.php/security/XSA-2004-4 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/17431 |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
20 Nov 2024, 23:50
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.gentoo.org/security/en/glsa/glsa-200409-30.xml - Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/archive/1/375485/2004-09-02/2004-09-08/0 - Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/11206 - Patch | |
References | () http://xinehq.de/index.php/security/XSA-2004-4 - Patch, Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/17431 - |
Information
Published : 2004-12-31 05:00
Updated : 2024-11-20 23:50
NVD link : CVE-2004-1476
Mitre link : CVE-2004-1476
CVE.ORG link : CVE-2004-1476
JSON object : View
Products Affected
suse
- suse_linux
xine
- xine
- xine-lib
CWE