VYPR
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026

CVE-2004-1476

CVE-2004-1476

Description

Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows attackers to execute arbitrary code via a VideoCD with an unterminated disk label.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

17
  • Xine/Xine Lib10 versions
    cpe:2.3:a:xine:xine:0.9.18:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:xine:xine:0.9.18:*:*:*:*:*:*:*
    • cpe:2.3:a:xine:xine:1_rc2:*:*:*:*:*:*:*
    • cpe:2.3:a:xine:xine:1_rc3:*:*:*:*:*:*:*
    • cpe:2.3:a:xine:xine:1_rc4:*:*:*:*:*:*:*
    • cpe:2.3:a:xine:xine:1_rc5:*:*:*:*:*:*:*
    • cpe:2.3:a:xine:xine-lib:0.99:*:*:*:*:*:*:*
    • cpe:2.3:a:xine:xine-lib:1_rc2:*:*:*:*:*:*:*
    • cpe:2.3:a:xine:xine-lib:1_rc3:*:*:*:*:*:*:*
    • cpe:2.3:a:xine:xine-lib:1_rc4:*:*:*:*:*:*:*
    • cpe:2.3:a:xine:xine-lib:1_rc5:*:*:*:*:*:*:*
  • SUSE S.A./Linux7 versions
    cpe:2.3:o:suse:suse_linux:8.0:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:o:suse:suse_linux:8.0:*:*:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:8.1:*:*:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:8.2:*:personal:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.0:*:personal:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.0:*:x86_64:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.1:*:personal:*:*:*:*:*
    • cpe:2.3:o:suse:suse_linux:9.2:*:personal:*:*:*:*:*

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.