CVE-2006-4799

CVSS 7.5 - HIGH
Description

Buffer overflow in ffmpeg for xine-lib before 1.1.2 might allow context-dependent attackers to execute arbitrary code via a crafted AVI file and "bad indexes", a different vulnerability than CVE-2005-4048 and CVE-2006-2802.

Affected Products
4
Vendor Product Version
xine xine-lib All versions
xine xine-lib 1.0.1
xine xine-lib 1.0.2
xine xine-lib 1.1.0
References
http://secunia.com/advisories/22230
http://secunia.com/advisories/23010
http://secunia.com/advisories/23213
http://www.gentoo.org/security/en/glsa/glsa-200609...
http://www.novell.com/linux/security/advisories/20...
http://www.ubuntu.com/usn/usn-358-1
http://www.us.debian.org/security/2006/dsa-1215
http://xinehq.de/index.php/news
http://secunia.com/advisories/22230
http://secunia.com/advisories/23010
http://secunia.com/advisories/23213
http://www.gentoo.org/security/en/glsa/glsa-200609...
http://www.novell.com/linux/security/advisories/20...
http://www.ubuntu.com/usn/usn-358-1
http://www.us.debian.org/security/2006/dsa-1215
http://xinehq.de/index.php/news
Weakness Types
NVD-CWE-Other
CVE Information
CVE ID:
CVE-2006-4799
Published:
2006-09-14
Modified:
2026-04-16
CVSS Score:
7.5
Severity:
HIGH
Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Vendors
xine
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL