First published: Tue Nov 16 2004(Updated: )
Buffer overflow in the http_open function in Kaffeine before 0.5, whose code is also used in gxine before 0.3.3, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long Content-Type header for a Real Audio Media (.ram) playlist file.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Xine Gxine | =0.3 | |
Kaffeine Kaffeine Player | =0.5_rc1 | |
Kaffeine Kaffeine Player | =0.4.3 | |
Kaffeine Kaffeine Player | =0.4.3b | |
Kaffeine Kaffeine Player | =0.4.2 | |
Gentoo Linux |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.