Info

Disclosure

May 30, 2006

Discovery

Unknown

Dates

Exploit

May 30, 2006

Solution

Unknown

Description

A remote overflow exists in xine-lib. The xineplug_inp_http.so library fails to properly check bounds for HTTP responses resulting in a buffer overflow. By tricking a victim into opening an HTTP link to a malicious website, an attacker can cause arbitary code execution on the victim\'s system resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Upgrade to cvs version (after 2006-05-31) or version 1.1.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

xine-Project	xine-lib	1.1.1
		1.1.0
		1.0.2
		1.0.1

References

Bugtraq ID: 18187
Milw0rm: 1852
Exploit Database: 1852
CVE ID: 2006-2802 (see also: NVD)
Secunia Advisory ID: 20369 20549 20766 20828 20942 21919
Other Advisory URL: http://lists.suse.com/archive/suse-security-announce/2006-Jun/0008.html
http://www.gentoo.org/security/en/glsa/glsa-200609-08.xml
http://www.securiteam.com/unixfocus/5JP0W0AIKA.html
http://www.ubuntu.com/usn/usn-295-1
Vendor Specific Advisory URL: http://sourceforge.net/mailarchive/forum.php?thread_id=11076540&forum_id=7131
http://www.mandriva.com/security/advisories?name=MDKSA-2006:108
http://www.us.debian.org/security/2006/dsa-1105
Vendor Specific Solution URL: http://sourceforge.net/mailarchive/forum.php?thread_id=11077232&forum_id=11923
Vendor URL: http://xinehq.de/

Credit

Federico L. Bossi Bonin - fbossinetcomm.com.ar -

Direct URL: http://osvdb.org/25936

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

xine-Project

xine-lib

References

Credit