Xine.Filename.Handling.Remote.Format.String

description-logoDescription

Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine 0.99.4 might allow attackers to cause a denial of service via format string specifiers in an MP3 filename specified on the command line.

affected-products-logoAffected Products

xine, xine, 0.99.4

Impact logoImpact

Denial of service

recomended-action-logoRecommended Actions

Currently we are not aware of any official vendor-supplied patches for this issue.
http://xine.sourceforge.net

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)