CVE-2005-1195 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2005-1195
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-1195

Description: Multiple heap-based buffer overflows in the code used to handle (1) MMS over TCP (MMST) streams or (2) RealMedia RTSP streams in xine-lib before 1.0, and other products that use xine-lib such as MPlayer 1.0pre6 and earlier, allow remote malicious servers to execute arbitrary code.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/20175 http://xforce.iss.net/xforce/xfdb/20171 ST 1013771 SAID Secunia Advisory: SA15014 OSVDB 15711 15712 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200504-19.xml CONFIRM http://www.mplayerhq.hu/homepage/design7/news.html#vuln11 http://www.mplayerhq.hu/homepage/design7/news.html#vuln10 http://cvs.sourceforge.net/viewcvs.py/xine/xine-lib/src/input/mms.c?r1=1.55&r2=1.56&diff_format=u http://cvs.sourceforge.net/viewcvs.py/xine/xine-lib/src/input/librtsp/rtsp.c?r1=1.18&r2=1.19&diff_format=u BUGTRAQ http://www.securityfocus.com/archive/1/396703 http://seclists.org/lists/bugtraq/2005/Apr/0337.html BID 13271

Return to the previous page.