CVE-2006-4799

Published: Sep 14, 2006Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Buffer overflow in ffmpeg for xine-lib before 1.1.2 might allow context-dependent attackers to execute arbitrary code via a crafted AVI file and "bad indexes", a different vulnerability than CVE-2005-4048 and CVE-2006-2802.

Affected (4)

Products: Xine: Xine Lib

Xine

1 product

Xine Lib

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Xine Xine Lib	Up to 1.1.1
Xine Xine Lib	Version 1.0.1
Xine Xine Lib	Version 1.0.2
Xine Xine Lib	Version 1.1.0

References (16)

http://secunia.com/advisories/22230

Source: cve@mitre.org

http://secunia.com/advisories/23010

Source: cve@mitre.org

http://secunia.com/advisories/23213

Source: cve@mitre.org

http://www.gentoo.org/security/en/glsa/glsa-200609-09.xml

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2006_73_mono.html

Source: cve@mitre.org

http://www.ubuntu.com/usn/usn-358-1

Source: cve@mitre.org

http://www.us.debian.org/security/2006/dsa-1215

Source: cve@mitre.org

http://xinehq.de/index.php/news

Source: cve@mitre.org

http://secunia.com/advisories/22230