CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
86.6%
Multiple heap-based buffer overflows in the code used to handle (1) MMS
over TCP (MMST) streams or (2) RealMedia RTSP streams in xine-lib before
1.0, and other products that use xine-lib such as MPlayer 1.0pre6 and
earlier, allow remote malicious servers to execute arbitrary code.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | xine-extracodecs | < 1.1.1+ubuntu1-2 | UNKNOWN |
ubuntu | 6.10 | noarch | xine-extracodecs | < 1.1.1+ubuntu1-2 | UNKNOWN |
ubuntu | 7.04 | noarch | xine-extracodecs | < 1.1.1+ubuntu1-2 | UNKNOWN |
ubuntu | 6.06 | noarch | xine-lib | < 1.1.1+ubuntu2-7.7 | UNKNOWN |
ubuntu | 6.10 | noarch | xine-lib | < 1.1.2+repacked1-0ubuntu3.4 | UNKNOWN |
ubuntu | 7.04 | noarch | xine-lib | < 1.1.4-2ubuntu3 | UNKNOWN |