Unrated severityNVD Advisory· Published Nov 30, 2006· Updated Apr 23, 2026
CVE-2006-6172
CVE-2006-6172
Description
Buffer overflow in the asmrp_eval function in the RealMedia RTSP stream handler (asmrp.c) for Real Media input plugin, as used in (1) xine/xine-lib, (2) MPlayer 1.0rc1 and earlier, and possibly others, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a rulebook with a large number of rulematches.
Affected products
2- cpe:2.3:a:xine:real_media_input_plugin:*:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
24- sourceforge.net/tracker/index.phpnvdExploitPatchVendor Advisory
- secunia.com/advisories/23218nvd
- secunia.com/advisories/23242nvd
- secunia.com/advisories/23249nvd
- secunia.com/advisories/23301nvd
- secunia.com/advisories/23335nvd
- secunia.com/advisories/23512nvd
- secunia.com/advisories/23567nvd
- secunia.com/advisories/24336nvd
- secunia.com/advisories/24339nvd
- secunia.com/advisories/25555nvd
- security.gentoo.org/glsa/glsa-200612-02.xmlnvd
- security.gentoo.org/glsa/glsa-200702-11.xmlnvd
- slackware.com/security/viewer.phpnvd
- sourceforge.net/project/shownotes.phpnvd
- www.debian.org/security/2006/dsa-1244nvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.mplayerhq.hu/MPlayer/patches/asmrules_fix_20061231.diffnvd
- www.mplayerhq.hu/design7/news.htmlnvd
- www.novell.com/linux/security/advisories/2006_28_sr.htmlnvd
- www.securityfocus.com/bid/21435nvd
- www.ubuntu.com/usn/usn-392-1nvd
- www.vupen.com/english/advisories/2006/4824nvd
News mentions
0No linked articles in our index yet.