CVE-2006-2802

Published: Jun 3, 2006Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.

Affected (5)

Products: Xine: Gxine, Xine Lib

Xine

2 products

Gxine

Xine Lib

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Xine Gxine	Version 0.5.6
Xine Xine Lib	Version 1.0.1
Xine Xine Lib	Version 1.0.2
Xine Xine Lib	Version 1.1.0
Xine Xine Lib	Version 1.1.1

References (30)

http://lists.suse.com/archive/suse-security-announce/2006-Jun/0008.html

Source: cve@mitre.org

http://secunia.com/advisories/20369

Source: cve@mitre.org

ExploitVendor Advisory

http://secunia.com/advisories/20549

Source: cve@mitre.org

http://secunia.com/advisories/20766

Source: cve@mitre.org

http://secunia.com/advisories/20828

Source: cve@mitre.org

http://secunia.com/advisories/20942

Source: cve@mitre.org

http://secunia.com/advisories/21919

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200609-08.xml

Source: cve@mitre.org

http://www.debian.org/security/2006/dsa-1105

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDKSA-2006:108

Source: cve@mitre.org

http://www.osvdb.org/25936

Source: cve@mitre.org

http://www.securityfocus.com/bid/18187

Source: cve@mitre.org

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/26972

Source: cve@mitre.org

https://usn.ubuntu.com/295-1/

Source: cve@mitre.org

https://www.exploit-db.com/exploits/1852

Source: cve@mitre.org

http://lists.suse.com/archive/suse-security-announce/2006-Jun/0008.html