Xine.Filename.Handling.Remote.Format.String
Description
Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine 0.99.4 might allow attackers to cause a denial of service via format string specifiers in an MP3 filename specified on the command line.
Affected Products
xine, xine, 0.99.4
Impact
Denial of service
Recommended Actions
Currently we are not aware of any official vendor-supplied patches for this issue.
http://xine.sourceforge.net
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |