Vulnerability Database

309,237

Total vulnerabilities in the database

CVE-2006-1664

Buffer overflow in xine_list_delete_current in libxine 1.14 and earlier, as distributed in xine-lib 1.1.1 and earlier, allows remote attackers to execute arbitrary code via a crafted MPEG stream.

Published: Apr 7, 2006
Updated: Nov 9, 2025
CVE: CVE-2006-1664
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
xine / xine-lib	1.1.0	1.1.0.x
xine / xine-lib	1.0.3a	1.0.3a.x
xine / xine-lib	1.0.1	1.0.1.x
xine / xine-lib	1.0.2	1.0.2.x
xine / xine-lib	0.9.13	0.9.13.x
xine / xine-lib	1.0	1.0.x
xine / xine-lib	1.1.1	1.1.1.x

http://bugs.gentoo.org/show_bug.cgi?id=128838
http://secunia.com/advisories/19853
http://secunia.com/advisories/19856
http://secunia.com/advisories/28666
http://securitytracker.com/id?1015868
http://sourceforge.net/project/shownotes.php?group_id=9655&release_id=571608
http://www.gentoo.org/security/en/glsa/glsa-200604-16.xml
http://www.securityfocus.com/bid/17370
http://www.securityfocus.com/data/vulnerabilities/exploits/xinelib_poc.pl
https://exchange.xforce.ibmcloud.com/vulnerabilities/25670
https://www.exploit-db.com/exploits/1641
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00956.html
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00976.html

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo