CVE-2006-2802 - CVE Reference - Advisories

CVE Reference: CVE-2006-2802

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-2802

Description: Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/26972 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-295-1 SUSE http://lists.suse.com/archive/suse-security-announce/2006-Jun/0008.html SAID Secunia Advisory: SA20369 Secunia Advisory: SA20549 Secunia Advisory: SA20766 Secunia Advisory: SA20828 Secunia Advisory: SA20942 Secunia Advisory: SA21919 OSVDB 25936 MISC http://www.milw0rm.com/exploits/1852 MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:108 MANDRAKE http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:108 GENTOO http://security.gentoo.org/glsa/glsa-200609-08.xml DEBIAN http://www.debian.org/security/2006/dsa-1105 BID 18187

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	OpenBSD BIND Query Port DNS Cache Poisoning

2.	Red Hat update for kernel

3.	Linux Kernel LDT Buffer Size Handling Vulnerability

4.	Drupal Session Fixation Vulnerability

5.	IPCop update for perl

6.	Debian update for clamav

7.	Ubuntu update for php

8.	Debian update for xulrunner

9.	Apple Safari Cross-Domain Cookie Injection Vulnerability

10.	dnsmasq Denial of Service and DNS Cache Poisoning