Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple integer overflows in xine-lib 1.1.11 and earlier allow remote attackers to trigger heap-based buffer overflows and possibly execute arbitrary code via (1) a crafted .FLV file, which triggers an overflow in demuxers/demux_flv.c; (2) a crafted .MOV file, which triggers an overflow in demuxers/demux_qt.c; (3) a crafted .RM file, which triggers an overflow in demuxers/demux_real.c; (4) a crafted .MVE file, which triggers an overflow in demuxers/demux_wc3movie.c; (5) a crafted .MKV file, which triggers an overflow in demuxers/ebml.c; or (6) a crafted .CAK file, which triggers an overflow in demuxers/demux_film.c.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
xine 多个堆溢出漏洞
Vulnerability Description
xine是一款免费的媒体播放器,支持多种格式。 xine在计算某些目标缓冲区和数组所需分配的内存数时错误的32位计算,导致xine-lib受多个堆溢出漏洞影响,可能允许攻击者控制寄存器和代码流。 以下是有漏洞的代码部分: ----------------------------- A] demux_flv堆溢出 ----------------------------- src/demuxers/demux_flv.c: static int parse_flv_var(demux_flv_t *this
CVSS Information
N/A
Vulnerability Type
N/A