FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libmms -- stack-based buffer overflow

Affected packages
libmms < 0.3
libxine < 1.1.1


VuXML ID f6bff909-4a26-11db-a4cc-000a48049292
Discovery 2006-05-04
Entry 2006-09-22

Mitre CVE reports:

Stack-based buffer overflow in libmms, as used by (a) MiMMS 0.0.9 and (b) xine-lib 1.1.0 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via the (1) send_command, (2) string_utf16, (3) get_data, and (4) get_media_packet functions, and possibly other functions.


Bugtraq ID 18608
CVE Name CVE-2006-2200