| Vulnerability Name: | CVE-2004-1475 (CCN-17430) | ||||||||
| Assigned: | 2004-09-17 | ||||||||
| Published: | 2004-09-17 | ||||||||
| Updated: | 2017-07-11 | ||||||||
| Summary: | Multiple stack-based buffer overflows in xine-lib 1-rc2 through 1-rc5 allow attackers to execute arbitrary code via (1) long VideoCD vcd:// MRLs or (2) long subtitle lines. | ||||||||
| CVSS v3 Severity: | 5.6 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||
| CVSS v2 Severity: | 5.1 Medium (CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2004-1475 Source: CCN Type: SourceForge.net CVS Repository cvs: xine/xine-lib/src/input/vcd/xineplug_inp_vcd.c Source: GENTOO Type: Patch GLSA-200408-18 Source: CCN Type: SECTRACK ID: 1011336 xine-lib VideoCD Buffer Overflows Let Remote Users Execute Arbitrary Code Source: CCN Type: slackware-security Mailing List, Wed, 22 Sep 2004 13:39:28 -0700 (PDT) [slackware-security] xine-lib (SSA:2004-266-04) Source: CCN Type: GLSA-200408-18 xine-lib: VCD MRL buffer overflow Source: CCN Type: GLSA-200409-30 xine-lib: Multiple vulnerabilities Source: GENTOO Type: Patch GLSA-200409-30 Source: BUGTRAQ Type: Vendor Advisory 20040907 XSA-2004-4: multiple string overflows Source: BID Type: Patch 11206 Source: CCN Type: BID-11206 Xine-lib VideoCD And Text Subtitle Stack Overflow Vulnerabilities Source: CCN Type: xine Web site xine - A Free Video Player Source: CCN Type: xine-Project Download Web page Download and install xine-lib Source: CONFIRM Type: UNKNOWN http://xinehq.de/index.php/security/XSA-2004-4 Source: XF Type: UNKNOWN xine-videocd-mrl-bo(17430) Source: XF Type: UNKNOWN xine-videocd-mrl-bo(17430) Source: XF Type: UNKNOWN xine-subtitle-bo(17432) | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| Vulnerability Name: | CVE-2004-1475 (CCN-17432) | ||||||||
| Assigned: | 2004-09-17 | ||||||||
| Published: | 2004-09-17 | ||||||||
| Updated: | 2004-09-17 | ||||||||
| Summary: | xine is vulnerable to a stack-based buffer overflow, caused by improper bounds checking of user-supplied input in text subtitles. By sending a specially-crafted subtitle line, a remote attacker could overflow a buffer and execute arbitrary code on the system with privileges of the user, once the subtitle line is viewed using network streaming. | ||||||||
| CVSS v3 Severity: | 7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||
| CVSS v2 Severity: | 5.1 Medium (CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
| ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2004-1475 Source: CCN Type: SourceForge.net CVS Repository cvs: xine/xine-lib/src/input/vcd/xineplug_inp_vcd.c Source: CCN Type: SECTRACK ID: 1011336 xine-lib VideoCD Buffer Overflows Let Remote Users Execute Arbitrary Code Source: CCN Type: slackware-security Mailing List, Wed, 22 Sep 2004 13:39:28 -0700 (PDT) [slackware-security] xine-lib (SSA:2004-266-04) Source: CCN Type: GLSA-200408-18 xine-lib: VCD MRL buffer overflow Source: CCN Type: GLSA-200409-30 xine-lib: Multiple vulnerabilities Source: CCN Type: BID-11206 Xine-lib VideoCD And Text Subtitle Stack Overflow Vulnerabilities Source: CCN Type: xine Web site xine - A Free Video Player Source: CCN Type: xine-Project Download Web page Download and install xine-lib Source: XF Type: UNKNOWN xine-subtitle-bo(17432) | ||||||||
| BACK | |||||||||