CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
96.5%
Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib
1.1.1 allows remote attackers to cause a denial of service (application
crash) via a long reply from an HTTP server, as demonstrated using gxine
0.5.6.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.10 | noarch | xine-extracodecs | < 1.1.2-0ubuntu2 | UNKNOWN |
ubuntu | 7.04 | noarch | xine-extracodecs | < 1.1.2-0ubuntu2 | UNKNOWN |
ubuntu | 6.06 | noarch | xine-lib | < 1.1.1+ubuntu2-7.7 | UNKNOWN |
ubuntu | 6.10 | noarch | xine-lib | < 1.1.2+repacked1-0ubuntu3.4 | UNKNOWN |
ubuntu | 7.04 | noarch | xine-lib | < 1.1.4-2ubuntu3 | UNKNOWN |
ubuntu | 7.10 | noarch | xine-lib | < 1.1.4-2ubuntu3 | UNKNOWN |
ubuntu | 8.04 | noarch | xine-lib | < 1.1.4-2ubuntu3 | UNKNOWN |
ubuntu | 8.10 | noarch | xine-lib | < 1.1.4-2ubuntu3 | UNKNOWN |
ubuntu | 9.04 | noarch | xine-lib | < 1.1.4-2ubuntu3 | UNKNOWN |
ubuntu | 9.10 | noarch | xine-lib | < 1.1.4-2ubuntu3 | UNKNOWN |