VYPR

Vendor CVEs

Xine

All CVEs

55 total · sorted by risk
  • CVE-2004-1455Dec 31, 2004
    risk 0.00cvss epss 0.04

    Stack-based buffer overflow in Xine-lib-rc5 in xine-lib 1_rc5-r2 and earlier allows remote attackers to execute arbitrary code via crafted playlists that result in a long vcd:// URL.

  • CVE-2004-1476Dec 31, 2004
    risk 0.00cvss epss 0.02

    Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows attackers to execute arbitrary code via a VideoCD with an unterminated disk label.

  • CVE-2004-1379Sep 16, 2004
    risk 0.00cvss epss 0.04

    Heap-based buffer overflow in the DVD subpicture decoder in xine xine-lib 1-rc5 and earlier allows remote attackers to execute arbitrary code via a (1) DVD or (2) MPEG subpicture header where the second field reuses RLE data from the end of the first field.

  • CVE-2004-0433Aug 18, 2004
    risk 0.00cvss epss 0.05

    Multiple buffer overflows in the Real-Time Streaming Protocol (RTSP) client for (1) MPlayer before 1.0pre4 and (2) xine lib (xine-lib) before 1-rc4, when playing Real RTSP (realrtsp) streams, allow remote attackers to cause a denial of service (crash) and possibly execute…

  • CVE-2004-0372Apr 15, 2004
    risk 0.00cvss epss 0.00

    xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xine-check scripts.

Page 2 of 2