First published: Fri Oct 14 2005(Updated: )
Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 through 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.
Credit: security@debian.org
Affected Software | Affected Version | How to fix |
---|---|---|
xine xine-lib | =1.1.0 | |
xine xine-lib | =1.0.1 | |
xine xine-lib | =1.0.2 | |
xine xine-lib | =0.9.13 | |
xine xine-lib | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.