CVE-2004-0433

Опубликовано: 18 авг. 2004

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

Multiple buffer overflows in the Real-Time Streaming Protocol (RTSP) client for (1) MPlayer before 1.0pre4 and (2) xine lib (xine-lib) before 1-rc4, when playing Real RTSP (realrtsp) streams, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (a) long URLs, (b) long Real server responses, or (c) long Real Data Transport (RDT) packets.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mplayer:mplayer:1.0_pre3try2:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_beta1:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_beta2:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_beta3:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_beta4:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_beta5:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_beta6:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_beta7:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_beta8:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_beta9:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_beta10:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_beta11:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_rc2:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_rc3a:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_rc3b:*:*:*:*:*:*:*

cpe:2.3:a:xine:xine-lib:1_rc3c:*:*:*:*:*:*:*

EPSS

Процентиль: 86%

0.03088

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2004-0433

debian

около 21 года назад

Multiple buffer overflows in the Real-Time Streaming Protocol (RTSP) c ...

GHSA-4pvm-mp59-j2rf

github

больше 3 лет назад