xine-lib arbitrary file overwrite
From the xinehq advisory:
By opening a malicious MRL in any xine-lib based media
player, an attacker can write arbitrary content to an
arbitrary file, only restricted by the permissions of the
user running the application.
The flaw is a result of a feature that allows MRLs (media
resource locator URIs) to specify arbitrary configuration
Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright