Xine-Lib Remote Client-Side Buffer Overflow Vulnerability

Bugtraq ID:	11969
Class:	Boundary Condition Error
CVE:	CVE-2004-1300
Remote:	Yes
Local:	No
Published:	Dec 16 2004 12:00AM
Updated:	Jul 12 2009 09:26AM
Credit:	Discovery of this vulnerability is credited to Ariel Berkman.
Vulnerable:	xine xine-lib 0.99 + S.u.S.E. Linux Personal 9.1 + S.u.S.E. Linux Personal 9.0 x86_64 + S.u.S.E. Linux Personal 9.0 xine xine-lib 0.9.13 xine xine-lib 0.9.8 xine xine-lib 1-rc6a xine xine-lib 1-rc5 xine xine-lib 1-rc4 xine xine-lib 1-rc3c + Slackware Linux 9.1 + Slackware Linux -current xine xine-lib 1-rc3b xine xine-lib 1-rc3a xine xine-lib 1-rc3 xine xine-lib 1-rc2 xine xine-lib 1-rc1 xine xine-lib 1-rc0 xine xine-lib 1-beta9 xine xine-lib 1-beta8 xine xine-lib 1-beta7 xine xine-lib 1-beta6 xine xine-lib 1-beta5 xine xine-lib 1-beta4 xine xine-lib 1-beta3 xine xine-lib 1-beta2 xine xine-lib 1-beta12 xine xine-lib 1-beta11 xine xine-lib 1-beta10 xine xine-lib 1-beta1 xine xine-lib 1-alpha xine xine 0.9.18 + S.u.S.E. Linux Personal 8.2 xine xine 0.9.13 xine xine 0.9.8 - Debian Linux 3.0 sparc - Debian Linux 3.0 s/390 - Debian Linux 3.0 ppc - Debian Linux 3.0 mipsel - Debian Linux 3.0 mips - Debian Linux 3.0 m68k - Debian Linux 3.0 ia-64 - Debian Linux 3.0 ia-32 - Debian Linux 3.0 hppa - Debian Linux 3.0 arm - Debian Linux 3.0 alpha - Debian Linux 3.0 xine xine 1-rc6a xine xine 1-rc5 xine xine 1-rc4 xine xine 1-rc3b xine xine 1-rc3a xine xine 1-rc3 xine xine 1-rc2 xine xine 1-rc1 xine xine 1-rc1 xine xine 1-rc0a xine xine 1-rc0 xine xine 1-beta9 xine xine 1-beta8 xine xine 1-beta7 xine xine 1-beta6 xine xine 1-beta5 xine xine 1-beta4 xine xine 1-beta3 xine xine 1-beta2 xine xine 1-beta12 xine xine 1-beta11 xine xine 1-beta10 xine xine 1-beta1 xine xine 1-alpha Turbolinux Turbolinux Desktop 10.0 Turbolinux Home S.u.S.E. Linux Personal 9.2 S.u.S.E. Linux Personal 9.1 S.u.S.E. Linux Personal 9.0 x86_64 S.u.S.E. Linux Personal 9.0 S.u.S.E. Linux Personal 8.2

Not Vulnerable:	xine xine-lib 1.0