Lucene search
UbuntuUSN-295-1HistoryJun 09, 2006 - 12:00 a.m.
xine-lib vulnerability
2006-06-0900:00:00
ubuntu.com
36
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
7.3
Confidence
Low
EPSS
0.214
Percentile
96.5%
Releases
- Ubuntu 6.06
- Ubuntu 5.10
- Ubuntu 5.04
Details
Federico L. Bossi Bonin discovered a buffer overflow in the HTTP input
module. By tricking an user into opening a malicious remote media
location, a remote attacker could exploit this to crash Xine library
frontends (like totem-xine, gxine, or xine-ui) and possibly even
execute arbitrary code with the user’s privileges.
References
Related
openvas
openvas
Gentoo Security Advisory GLSA 200609-08 (xine-lib)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-1105)
2008-01-17 00:00:00
FreeBSD Ports: libxine
2008-09-04 00:00:00
nessus
nessus
openSUSE 10 Security Update : xine-lib (xine-lib-1599)
2007-10-17 00:00:00
Debian DSA-1105-1 : xine-lib - buffer overflow
2006-10-14 00:00:00
GLSA-200609-08 : xine-lib: Buffer overflows
2006-09-15 00:00:00
cve
cve
prion
prion
Buffer overflow
2006-06-03 10:02:00
freebsd
freebsd
libxine -- buffer overflow vulnerability
2006-05-31 00:00:00
ubuntucve
ubuntucve
nvd
nvd
debian
debian
[SECURITY] [DSA 1105-1] New xine-lib packages fix denial of service
2006-07-07 06:43:43
exploitdb
exploitdb
gxine 0.5.6 - HTTP Plugin Remote Buffer Overflow (PoC)
2006-05-30 00:00:00
gentoo
gentoo
xine-lib: Buffer overflows
2006-09-13 00:00:00
cvelist
cvelist
slackware
slackware
[slackware-security] xine-lib
2006-07-26 21:25:49
debiancve
debiancve
CVE-2006-4800
2006-09-14 22:07:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
7.3
Confidence
Low
EPSS
0.214
Percentile
96.5%
Related for USN-295-1