Описание
Multiple heap-based buffer overflows in xine-lib before 1.1.15 allow remote attackers to execute arbitrary code via vectors that send ID3 data to the (1) id3v22_interp_frame and (2) id3v24_interp_frame functions in src/demuxers/id3.c. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.1.1+ubuntu2-7.10 |
| devel | not-affected | 1.1.15-0ubuntu1 |
| gutsy | released | 1.1.7-1ubuntu1.4 |
| hardy | released | 1.1.11.1-1ubuntu3.2 |
| intrepid | not-affected | 1.1.15-0ubuntu1 |
| upstream | released | 1.1.15 |
Показывать по
9.3 Critical
CVSS2
Связанные уязвимости
Multiple heap-based buffer overflows in xine-lib before 1.1.15 allow remote attackers to execute arbitrary code via vectors that send ID3 data to the (1) id3v22_interp_frame and (2) id3v24_interp_frame functions in src/demuxers/id3.c. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Multiple heap-based buffer overflows in xine-lib before 1.1.15 allow r ...
Multiple heap-based buffer overflows in xine-lib before 1.1.15 allow remote attackers to execute arbitrary code via vectors that send ID3 data to the (1) id3v22_interp_frame and (2) id3v24_interp_frame functions in src/demuxers/id3.c. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
9.3 Critical
CVSS2