CVE-2008-0238

Name of the Vulnerable Software and Affected Versions xine-lib version 1.1.9

Description The issue is related to multiple heap-based buffer overflows in the rmff dump cont function, which can be exploited by remote attackers to execute arbitrary code. This can be achieved via the SDP Title, Author, or Copyright attribute. The rmff dump header function is also related to this issue.

Recommendations For xine-lib version 1.1.9, update to a newer version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.