| Max CVSS | 9.3 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-1246 | 7.6 |
The DMO_VideoDecoder_Open function in loader/dmo/DMO_VideoDecoder.c in MPlayer 1.0rc1 and earlier, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote attackers to cause a buffer overflow and possibl
|
16-10-2018 - 16:37 | 03-03-2007 - 19:19 | |
| CVE-2008-0486 | 7.5 |
Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a
|
15-10-2018 - 22:00 | 05-02-2008 - 12:00 | |
| CVE-2007-1387 | 6.8 |
The DirectShow loader (loader/dshow/DS_VideoDecoder.c) in MPlayer 1.0rc1 and earlier, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote attackers to cause a buffer overflow and possibly execute arb
|
03-10-2018 - 21:46 | 13-03-2007 - 19:19 | |
| CVE-2008-1161 | 9.3 |
Buffer overflow in the Matroska demuxer (demuxers/demux_matroska.c) in xine-lib before 1.1.10.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Matroska file with invalid frame sizes.
|
08-08-2017 - 01:29 | 10-03-2008 - 22:44 | |
| CVE-2008-0073 | 6.8 |
Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.
|
08-08-2017 - 01:29 | 24-03-2008 - 22:44 |