Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-dv6p-47uf-8ucb
Vulnerability ID VCID-dv6p-47uf-8ucb
Aliases CVE-2004-1476
Summary Stack-based buffer overflow in the VideoCD (VCD) code in xine-lib 1-rc2 through 1-rc5, as derived from libcdio, allows attackers to execute arbitrary code via a VideoCD with an unterminated disk label.
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.02053 https://api.first.org/data/v1/epss?cve=CVE-2004-1476
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2004-1476
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1476
GLSA-200409-30 https://security.gentoo.org/glsa/200409-30
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.84163
EPSS Score 0.02053
Published At May 29, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-05-29T13:40:31.191788+00:00 Debian Oval Importer Import https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0