Xine-Lib Malformed MPEG Stream Buffer Overflow Vulnerability

Xine-lib is susceptible to a buffer-overflow vulnerability. This issue is due to the application's failure to properly bounds-check user-supplied input data before copying it to an insufficiently sized memory buffer.

Successful exploits allow remote attackers to execute arbitrary machine code in the context of the affected application.

Xine-lib version 1.1.1 is reportedly affected. Other versions may also be affected, as well as all applications that use a vulnerable version of the library.


 

Privacy Statement
Copyright 2010, SecurityFocus