← Back

CVE-2004-1476

nvd nist
Published: Dec 31, 2004Modified: Apr 16, 2026

JSON object

Loading...
5.1
Vector
AV:N/AC:H/Au:N/C:P/I:P/A:P
Exploitability: 4.9 / Impact: 6.4
Source: NVD

Description

Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows attackers to execute arbitrary code via a VideoCD with an unterminated disk label.

Affected (17)

Products: Xine: Xine, Xine Lib · Suse: Suse Linux
Xine
2 products
Xine
Xine Lib
Suse
1 product
Suse Linux
Configuration A
10 vulnerable
Vulnerable SoftwareAffected Versions
Xine
Xine
Version 0.9.18
Xine
Version 1_rc2
Xine
Version 1_rc3
Xine
Version 1_rc4
Xine
Version 1_rc5
Xine
Xine Lib
Version 0.99
Xine Lib
Version 1_rc2
Xine Lib
Version 1_rc3
Xine Lib
Version 1_rc4
Xine Lib
Version 1_rc5
Configuration B
7 vulnerable
Vulnerable SoftwareAffected Versions
Suse
Suse Linux
Version 8.0
Suse Linux
Version 8.1
Suse Linux
Version 8.2
Suse Linux
Version 9.0
Suse Linux
Version 9.0
Suse Linux
Version 9.1
Suse Linux
Version 9.2

References (10)

Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Patch
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.