Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine 0.99.4 might allow attackers to cause a denial of service via format string specifiers in an MP3 filename specified on the command line. NOTE: this is a different vulnerability than CVE-2006-1905. In addition, if the only attack vectors involve a user-assisted, local command line argument of a non-setuid program, this issue might not be a vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Xine 文件名处理 远程格式串漏洞
Vulnerability Description
Xine是Linux系统下播放VCD/DVD的程序。 Xine在处理特制文件名时存在格式串漏洞,远程攻击者可以通过诱骗用户访问包含有格式串的恶意文件名导致执行任意代码。 漏洞代码: 在src/xitk/main.c中: /* (file name or mrl) */ case XINE_MSG_FILE_NOT_FOUND: snprintf(buffer, sizeof(buffer), "%s", _("The specified file or mrl is not \ found. Please
CVSS Information
N/A
Vulnerability Type
N/A