CyberSec.Space Logo
Back to CVE Browser

CVE-2004-1300

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0310%
EPSS Percentile23.12th
PublishedJan 10, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows remote attackers to execute arbitrary code via a crafted AIFF file.

Affected Platforms (CPE)

πŸ“¦
Xine

Xine Lib

= 1_rc7

References & Advisories

πŸ”— http://tigger.uic.edu/~jlongs2/holes/xine-lib.txt
πŸ”— http://www.mandriva.com/security/advisories?name=MDKSA-2005:011
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/18611
πŸ”— http://tigger.uic.edu/~jlongs2/holes/xine-lib.txt
πŸ”— http://www.mandriva.com/security/advisories?name=MDKSA-2005:011
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/18611

Related Vulnerabilities

CVE-2008-523710.0

Multiple integer overflows in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allow remote attackers to cause a denial of ...

CVE-2008-524410.0

Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact and attack vectors related to libfaad. NOTE: due to the la...

CVE-2004-043310.0

Multiple buffer overflows in the Real-Time Streaming Protocol (RTSP) client for (1) MPlayer before 1.0pre4 and (2) xine lib (xine-...

CVE-2008-52459.3

xine-lib before 1.1.15 performs V4L video frame preallocation before ascertaining the required length, which has unknown impact an...