CVE-2008-0073

Priority
Description
Array index error in the sdpplin_parse function in input/libreal/sdpplin.c
in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code
via a large streamid SDP parameter.
Assigned-to
jdstrand
Notes
keeshttp://www.milw0rm.com/exploits/5307
Package
Upstream:needs-triage
Package
Source: vlc (LP Ubuntu Debian)
Upstream:not-affected (0.8.6f)
More Information

Updated: 2020-09-10 00:35:04 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)