CVE-2006-1905
EPSS 8.0%Published: 4/20/2006Modified: 4/28/2026
Description
Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file.
Affected packages (1)
- Debian/xine-uifrom 0, < 0.99.4-1