vendor:
xine Media Player and Library
by:
Unknown
7.5
CVSS
HIGH
Remote File Overwrite
Unknown
CWE
Product Name: xine Media Player and Library
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: Unknown
Related CWE:
CPE: Unknown
Platforms Tested: Unknown
Unknown
Multiple Remote File Overwrite Vulnerabilities in xine Media Player and Library
The xine media player and library are affected by multiple remote file overwrite vulnerabilities. This is due to a design error that allows various media resource file configurations to write to arbitrary files. By setting certain configuration parameters and specifying an attacker-specified file, an attacker can overwrite the target file on the affected system.
Mitigation:
Unknown