Описание
Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and earlier allows remote attackers to execute arbitrary code via the SDP Abstract attribute in an RTSP session, related to the rmff_dump_header function and related to disregarding the max field. NOTE: some of these details are obtained from third party information.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 2:0.99+1.0pre7try2+cvs20060117-0ubuntu8.2 |
| devel | not-affected | |
| edgy | released | 2:0.99+1.0pre8-0ubuntu8.3 |
| feisty | released | 2:1.0~rc1-0ubuntu9.3 |
| gutsy | released | 2:1.0~rc1-0ubuntu13.2 |
| hardy | not-affected | |
| upstream | not-affected |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.1.1+ubuntu2-7.9 |
| devel | not-affected | 1.1.11.1-1ubuntu3 |
| edgy | ignored | end of life, was needed |
| feisty | released | 1.1.4-2ubuntu3.1 |
| gutsy | released | 1.1.7-1ubuntu1.3 |
| hardy | not-affected | 1.1.11.1-1ubuntu3 |
| upstream | released | 1.1.9.1 |
Показывать по
EPSS
6.4 Medium
CVSS2
Связанные уязвимости
Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and earlier allows remote attackers to execute arbitrary code via the SDP Abstract attribute in an RTSP session, related to the rmff_dump_header function and related to disregarding the max field. NOTE: some of these details are obtained from third party information.
Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and earlier allows remote attackers to execute arbitrary code via the SDP Abstract attribute in an RTSP session, related to the rmff_dump_header function and related to disregarding the max field. NOTE: some of these details are obtained from third party information.
Heap-based buffer overflow in the rmff_dump_cont function in input/lib ...
Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and earlier allows remote attackers to execute arbitrary code via the SDP Abstract attribute in an RTSP session, related to the rmff_dump_header function and related to disregarding the max field. NOTE: some of these details are obtained from third party information.
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность и целостность защищаемой информации
EPSS
6.4 Medium
CVSS2