• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Xine-lib DVD Subpicture Decoder Heap Overflow Vulnerability

A buffer overflow in the DVD subpicture component, exploitable through malicious DVD or MPEG content, may allow for the execution of arbitrary code. The Xine-lib decoder converts subpicture data into an internal representation and stores it in dynamically allocated memory. A flaw in the calculation of required buffer space may result in the allocation of a buffer that is too small. Consequently, neighboring data in the heap may be corrupted when data is written to the buffer.

Attackers could exploit this vulnerability to write arbitrary words to nearly arbitrary locations in memory. The Linux and Windows dynamic memory-allocation subsystems may be more susceptible than BSD-based systems.