CyberSec.Space Logo
CVEブラウザに戻る

CVE-2004-1300

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0310%
EPSS Percentile23.12th
Published2005年1月10日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows remote attackers to execute arbitrary code via a crafted AIFF file.

Affected Platforms (CPE)

📦
Xine

Xine Lib

= 1_rc7

References & Advisories

🔗 http://tigger.uic.edu/~jlongs2/holes/xine-lib.txt
🔗 http://www.mandriva.com/security/advisories?name=MDKSA-2005:011
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/18611
🔗 http://tigger.uic.edu/~jlongs2/holes/xine-lib.txt
🔗 http://www.mandriva.com/security/advisories?name=MDKSA-2005:011
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/18611

関連する脆弱性情報

CVE-2008-523710.0

Multiple integer overflows in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allow remote attackers to cause a denial of ...

CVE-2008-524410.0

Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact and attack vectors related to libfaad. NOTE: due to the la...

CVE-2004-043310.0

Multiple buffer overflows in the Real-Time Streaming Protocol (RTSP) client for (1) MPlayer before 1.0pre4 and (2) xine lib (xine-...

CVE-2008-52459.3

xine-lib before 1.1.15 performs V4L video frame preallocation before ascertaining the required length, which has unknown impact an...