Stack-based buffer overflow in Xine-lib-rc5 in xine-lib 1_rc5-r2 and earlier allows remote attackers to execute arbitrary code via crafted playlists that result in a long vcd:// URL.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Xine-lib | Xine | 1_beta1 (including) | 1_beta1 (including) |
| Xine-lib | Xine | 1_beta2 (including) | 1_beta2 (including) |
| Xine-lib | Xine | 1_beta3 (including) | 1_beta3 (including) |
| Xine-lib | Xine | 1_beta4 (including) | 1_beta4 (including) |
| Xine-lib | Xine | 1_beta5 (including) | 1_beta5 (including) |
| Xine-lib | Xine | 1_beta6 (including) | 1_beta6 (including) |
| Xine-lib | Xine | 1_beta7 (including) | 1_beta7 (including) |
| Xine-lib | Xine | 1_beta8 (including) | 1_beta8 (including) |
| Xine-lib | Xine | 1_beta9 (including) | 1_beta9 (including) |
| Xine-lib | Xine | 1_beta10 (including) | 1_beta10 (including) |
| Xine-lib | Xine | 1_beta11 (including) | 1_beta11 (including) |
| Xine-lib | Xine | 1_rc2 (including) | 1_rc2 (including) |
| Xine-lib | Xine | 1_rc3a (including) | 1_rc3a (including) |
| Xine-lib | Xine | 1_rc3b (including) | 1_rc3b (including) |
| Xine-lib | Xine | 1_rc3c (including) | 1_rc3c (including) |
| Xine-lib | Xine | 1_rc4 (including) | 1_rc4 (including) |
| Xine-lib | Xine | 1_rc5 (including) | 1_rc5 (including) |
| Xine-lib | Xine | 1_rc5_r2 (including) | 1_rc5_r2 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=109284737628045\u0026w=2
- http://open-security.org/advisories/6
- http://secunia.com/advisories/12194/
- http://www.gentoo.org/security/en/glsa/glsa-200408-18.xml
- http://www.securityfocus.com/bid/10890
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16930
- http://marc.info/?l=bugtraq\u0026m=109284737628045\u0026w=2
- http://open-security.org/advisories/6
- http://secunia.com/advisories/12194/
- http://www.gentoo.org/security/en/glsa/glsa-200408-18.xml
- http://www.securityfocus.com/bid/10890
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16930