Vulnerabilities (CVE)

Filtered by vendor Kaffeine Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-0051 1 Kaffeine 1 Kaffeine Player 2024-11-21 5.1 MEDIUM N/A
Buffer overflow in playlistimport.cpp in Kaffeine Player 0.4.2 through 0.7.1 allows user-assisted attackers to execute arbitrary code via long HTTP request headers when Kaffeine is "fetching remote playlists", which triggers the overflow in the http_peek function.
CVE-2004-1034 3 Gentoo, Kaffeine, Xine 3 Linux, Kaffeine Player, Gxine 2024-11-20 10.0 HIGH N/A
Buffer overflow in the http_open function in Kaffeine before 0.5, whose code is also used in gxine before 0.3.3, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long Content-Type header for a Real Audio Media (.ram) playlist file.