Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2802

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-2802
Last Modified 07 Mar 2011 09:37:03
Published 03 Jun 2006 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2802

Summary

Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.

Vulnerable Systems

Application

  • Gxine 0.5.6

  • Xine-lib 1.0.1

  • Xine-lib 1.0.2

  • Xine-lib 1.1.0

  • Xine-lib 1.1.1


References

BID - 18187

MANDRAKE - MDKSA-2006:108

SECUNIA - 20369

MILW0RM - 1852

XF - xinelib-xinepluginphttp-bo(26972)

UBUNTU - USN-295-1

OSVDB - 25936

DEBIAN - DSA-1105

GENTOO - GLSA-200609-08

SECUNIA - 21919

SECUNIA - 20942

SECUNIA - 20828

SECUNIA - 20766

SECUNIA - 20549

SUSE - SUSE-SR:2006:014


Last Updated: 27 May 2016 10:42:46