Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2006-2802 - CERT CVE
CVE-2006-2802
ID
CVE-2006-2802
Sažetak
Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.
Reference
http://lists.suse.com/archive/suse-security-announce/2006-Jun/0008.html
http://secunia.com/advisories/20369
http://secunia.com/advisories/20549
http://secunia.com/advisories/20766
http://secunia.com/advisories/20828
http://secunia.com/advisories/20942
http://secunia.com/advisories/21919
http://security.gentoo.org/glsa/glsa-200609-08.xml
http://www.debian.org/security/2006/dsa-1105
http://www.mandriva.com/security/advisories?name=MDKSA-2006:108
http://www.osvdb.org/25936
http://www.securityfocus.com/bid/18187
https://exchange.xforce.ibmcloud.com/vulnerabilities/26972
https://usn.ubuntu.com/295-1/
https://www.exploit-db.com/exploits/1852
CVSS
Base:
5.0
Impact:
2.9
Exploitability:
10.0
Pristup
Vektor
Složenost
Autentikacija
NETWORK
LOW
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
NONE
NONE
PARTIAL
CVSS vektor
AV:N/AC:L/Au:N/C:N/I:N/A:P
Zadnje važnije ažuriranje
03-10-2018 - 21:43
Objavljeno
03-06-2006 - 10:02
