CVE-2008-1110

Priority
Description
Buffer overflow in demuxers/demux_asf.c (aka the ASF demuxer) in the
xineplug_dmx_asf.so plugin in xine-lib before 1.1.10 allows remote
attackers to execute arbitrary code or cause a denial of service (crash)
via a crafted ASF header. NOTE: this issue leads to a crash when an attack
uses the CVE-2006-1664 exploit code, but it is different from
CVE-2006-1664.
Assigned-to
jdstrand
Notes
jdstrandaccording to http://xinehq.de/index.php/security, 1.1.2 and earlier
are not affected
PoC http://milw0rm.com/exploits/1641
More Information

Updated: 2020-09-10 00:37:10 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)