ID CVE-2006-2802
Summary Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.
References
Vulnerable Configurations
  • cpe:2.3:a:xine:gxine:0.5.6
    cpe:2.3:a:xine:gxine:0.5.6
  • cpe:2.3:a:xine:xine-lib:1.0.1
    cpe:2.3:a:xine:xine-lib:1.0.1
  • cpe:2.3:a:xine:xine-lib:1.0.2
    cpe:2.3:a:xine:xine-lib:1.0.2
  • cpe:2.3:a:xine:xine-lib:1.1.0
    cpe:2.3:a:xine:xine-lib:1.1.0
  • cpe:2.3:a:xine:xine-lib:1.1.1
    cpe:2.3:a:xine:xine-lib:1.1.1
CVSS
Base: 5.0 (as of 05-06-2006 - 11:24)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
exploit-db via4
description gxine 0.5.6 (HTTP Plugin) Remote Buffer Overflow PoC. CVE-2006-2802. Dos exploit for linux platform
file exploits/linux/dos/1852.c
id EDB-ID:1852
last seen 2016-01-31
modified 2006-05-30
platform linux
port
published 2006-05-30
reporter Federico L. Bossi Bonin
source https://www.exploit-db.com/download/1852/
title gxine 0.5.6 HTTP Plugin Remote Buffer Overflow PoC
type dos
nessus via4
  • NASL family Mandriva Local Security Checks
    NASL id MANDRAKE_MDKSA-2006-108.NASL
    description A buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6. (CVE-2006-2802) In addition, a possible buffer overflow exists in the AVI demuxer, similar in nature to CVE-2006-1502 for MPlayer. The Corporate 3 release of xine-lib does not have this issue. The updated packages have been patched to correct these issues.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 21752
    published 2006-06-24
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21752
    title Mandrake Linux Security Advisory : xine-lib (MDKSA-2006:108)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-1105.NASL
    description Federico L. Bossi Bonin discovered a buffer overflow in the HTTP Plugin in xine-lib, the xine video/media player library, that could allow a remote attacker to cause a denial of service.
    last seen 2019-02-21
    modified 2018-07-20
    plugin id 22647
    published 2006-10-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22647
    title Debian DSA-1105-1 : xine-lib - buffer overflow
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-295-1.NASL
    description Federico L. Bossi Bonin discovered a buffer overflow in the HTTP input module. By tricking an user into opening a malicious remote media location, a remote attacker could exploit this to crash Xine library frontends (like totem-xine, gxine, or xine-ui) and possibly even execute arbitrary code with the user's privileges. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-12-01
    plugin id 27867
    published 2007-11-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27867
    title Ubuntu 5.04 / 5.10 / 6.06 LTS : xine-lib vulnerability (USN-295-1)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_107E2EE5F94111DAB1FA020039488E34.NASL
    description A Secunia Advisory reports : Federico L. Bossi Bonin has discovered a weakness in xine-lib, which can be exploited by malicious people to crash certain applications on a user's system. The weakness is cause due to a heap corruption within the 'xineplug_inp_http.so' plugin when handling an overly large reply from the HTTP server. This can be exploited to crash an application that uses the plugin (e.g. gxine).
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 21700
    published 2006-06-16
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21700
    title FreeBSD : libxine -- buffer overflow vulnerability (107e2ee5-f941-11da-b1fa-020039488e34)
  • NASL family Slackware Local Security Checks
    NASL id SLACKWARE_SSA_2006-207-04.NASL
    description New xine-lib packages are available for Slackware 10.2 and -current to fix security issues.
    last seen 2019-02-21
    modified 2015-03-19
    plugin id 22101
    published 2006-07-28
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22101
    title Slackware 10.2 / current : xine-lib (SSA:2006-207-04)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_XINE-LIB-1599.NASL
    description Missing length checks in the HTTP plugin could lead to a buffer overflow on the heap (CVE-2006-2802).
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 27484
    published 2007-10-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27484
    title openSUSE 10 Security Update : xine-lib (xine-lib-1599)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-200609-08.NASL
    description The remote host is affected by the vulnerability described in GLSA-200609-08 (xine-lib: Buffer overflows) xine-lib contains buffer overflows in the processing of AVI. Additionally, xine-lib is vulnerable to a buffer overflow in the HTTP plugin (xineplug_inp_http.so) via a long reply from an HTTP server. Impact : An attacker could trigger the buffer overflow vulnerabilities by enticing a user to load a specially crafted AVI file in xine. This might result in the execution of arbitrary code with the rights of the user running xine. Additionally, a remote HTTP server serving a xine client a specially crafted reply could crash xine and possibly execute arbitrary code. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2018-07-11
    plugin id 22353
    published 2006-09-15
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22353
    title GLSA-200609-08 : xine-lib: Buffer overflows
refmap via4
bid 18187
debian DSA-1105
exploit-db 1852
gentoo GLSA-200609-08
mandrake MDKSA-2006:108
osvdb 25936
secunia
  • 20369
  • 20549
  • 20766
  • 20828
  • 20942
  • 21919
suse SUSE-SR:2006:014
ubuntu USN-295-1
xf xinelib-xinepluginphttp-bo(26972)
Last major update 19-02-2017 - 00:12
Published 03-06-2006 - 06:02
Last modified 03-10-2018 - 17:43
Back to Top