CVE Vulnerabilities

CVE-2006-2802

Published: Jun 03, 2006 | Modified: Oct 03, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.

Affected Software

Name Vendor Start Version End Version
Gxine Xine 0.5.6 (including) 0.5.6 (including)
Xine-lib Xine 1.0.1 (including) 1.0.1 (including)
Xine-lib Xine 1.0.2 (including) 1.0.2 (including)
Xine-lib Xine 1.1.0 (including) 1.1.0 (including)
Xine-lib Xine 1.1.1 (including) 1.1.1 (including)
Xine-extracodecs Ubuntu dapper *
Xine-extracodecs Ubuntu edgy *
Xine-extracodecs Ubuntu feisty *
Xine-lib Ubuntu dapper *
Xine-lib Ubuntu devel *
Xine-lib Ubuntu edgy *
Xine-lib Ubuntu feisty *
Xine-lib Ubuntu gutsy *
Xine-lib Ubuntu hardy *
Xine-lib Ubuntu intrepid *
Xine-lib Ubuntu jaunty *
Xine-lib Ubuntu karmic *

References