Vulnerability Name:

CVE-2004-1476 (CCN-17431)

Assigned:2004-09-17
Published:2004-09-17
Updated:2017-07-11
Summary:Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows attackers to execute arbitrary code via a VideoCD with an unterminated disk label.
CVSS v3 Severity:5.6 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:5.1 Medium (CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
5.1 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2004-1476

Source: CCN
Type: SourceForge.net CVS Repository
cvs: xine/xine-lib/src/input/vcd/xineplug_inp_vcd.c

Source: CCN
Type: SECTRACK ID: 1011336
xine-lib VideoCD Buffer Overflows Let Remote Users Execute Arbitrary Code

Source: CCN
Type: slackware-security Mailing List, Wed, 22 Sep 2004 13:39:28 -0700 (PDT)
[slackware-security] xine-lib (SSA:2004-266-04)

Source: CCN
Type: GLSA-200409-30
xine-lib: Multiple vulnerabilities

Source: GENTOO
Type: Patch, Vendor Advisory
GLSA-200409-30

Source: CCN
Type: OSVDB ID: 10042
xine-lib VideoCD ISO Disk Label Parsing Remote Overflow

Source: BUGTRAQ
Type: Patch, Vendor Advisory
20040907 XSA-2004-4: multiple string overflows

Source: BID
Type: Patch
11206

Source: CCN
Type: BID-11206
Xine-lib VideoCD And Text Subtitle Stack Overflow Vulnerabilities

Source: CCN
Type: xine Web site
xine - A Free Video Player

Source: CCN
Type: xine-Project Download Web page
Download and install xine-lib

Source: CONFIRM
Type: Patch, Vendor Advisory
http://xinehq.de/index.php/security/XSA-2004-4

Source: XF
Type: UNKNOWN
xine-videocd-disk-bo(17431)

Source: XF
Type: UNKNOWN
xine-videocd-disk-bo(17431)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:xine:xine:0.9.18:*:*:*:*:*:*:*
  • OR cpe:/a:xine:xine:1_rc2:*:*:*:*:*:*:*
  • OR cpe:/a:xine:xine:1_rc3:*:*:*:*:*:*:*
  • OR cpe:/a:xine:xine:1_rc4:*:*:*:*:*:*:*
  • OR cpe:/a:xine:xine:1_rc5:*:*:*:*:*:*:*
  • OR cpe:/a:xine:xine-lib:0.99:*:*:*:*:*:*:*
  • OR cpe:/a:xine:xine-lib:1_rc2:*:*:*:*:*:*:*
  • OR cpe:/a:xine:xine-lib:1_rc3:*:*:*:*:*:*:*
  • OR cpe:/a:xine:xine-lib:1_rc4:*:*:*:*:*:*:*
  • OR cpe:/a:xine:xine-lib:1_rc5:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:suse:suse_linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:8.1:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:8.2:*:personal:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.0:*:personal:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.0:*:x86_64:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.1:*:personal:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.2:*:personal:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    xine xine 0.9.18
    xine xine 1_rc2
    xine xine 1_rc3
    xine xine 1_rc4
    xine xine 1_rc5
    xine xine-lib 0.99
    xine xine-lib 1_rc2
    xine xine-lib 1_rc3
    xine xine-lib 1_rc4
    xine xine-lib 1_rc5
    suse suse linux 8.0
    suse suse linux 8.1
    suse suse linux 8.2
    suse suse linux 9.0
    suse suse linux 9.0
    suse suse linux 9.1
    suse suse linux 9.2