CVE-2006-1905

描述

Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine 0.99.3 allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file.

受影響套件(1)

• Debian/xine-uifrom 0, < 0.99.4-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-1905