xine 1.x alpha, 1.x beta, and 1.0rc through 1.0rc3a, and xine-ui 0.9.21 to 0.9.23 allows remote attackers to overwrite arbitrary files via the (1) audio.sun_audio_device or (2) dxr3.devicename options in an MRL link.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Xine | Xine | 0.9.8 (including) | 0.9.8 (including) |
| Xine | Xine | 0.9.13 (including) | 0.9.13 (including) |
| Xine | Xine | 1_beta1 (including) | 1_beta1 (including) |
| Xine | Xine | 1_beta2 (including) | 1_beta2 (including) |
| Xine | Xine | 1_beta3 (including) | 1_beta3 (including) |
| Xine | Xine | 1_beta4 (including) | 1_beta4 (including) |
| Xine | Xine | 1_beta5 (including) | 1_beta5 (including) |
| Xine | Xine | 1_beta6 (including) | 1_beta6 (including) |
| Xine | Xine | 1_beta7 (including) | 1_beta7 (including) |
| Xine | Xine | 1_beta8 (including) | 1_beta8 (including) |
| Xine | Xine | 1_beta9 (including) | 1_beta9 (including) |
| Xine | Xine | 1_beta10 (including) | 1_beta10 (including) |
| Xine | Xine | 1_beta11 (including) | 1_beta11 (including) |
| Xine | Xine | 1_beta12 (including) | 1_beta12 (including) |
| Xine | Xine | 1_rc0a (including) | 1_rc0a (including) |
| Xine | Xine | 1_rc1 (including) | 1_rc1 (including) |
| Xine | Xine | 1_rc2 (including) | 1_rc2 (including) |
| Xine | Xine | 1_rc3 (including) | 1_rc3 (including) |
| Xine | Xine | 1_rc3a (including) | 1_rc3a (including) |
| Xine | Xine | 1_rc3b (including) | 1_rc3b (including) |
| Xine-lib | Xine | 1_rc2 (including) | 1_rc2 (including) |
| Xine-lib | Xine | 1_rc3a (including) | 1_rc3a (including) |
| Xine-lib | Xine | 1_rc3b (including) | 1_rc3b (including) |
| Xine-lib | Xine | 1_rc3c (including) | 1_rc3c (including) |
| Xine-ui | Xine | 0.9.21 (including) | 0.9.21 (including) |
| Xine-ui | Xine | 0.9.22 (including) | 0.9.22 (including) |
| Xine-ui | Xine | 0.9.23 (including) | 0.9.23 (including) |