Format String Vulnerability in xine-lib's input_cdda.c

Format String Vulnerability in xine-lib's input_cdda.c

CVE-2005-2967 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 through 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.

Learn more about our Cis Benchmark Audit For Server Software.