Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2008-5236

Multiple heap-based buffer overflows in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allow remote attackers to execute arbitrary code via vectors related to (1) a crafted EBML element length processed by the parse_block_group function in demux_matroska.c; (2) a certain combination of sps, w, and h values processed by the real_parse_audio_specific_data and demux_real_send_chunk functions in demux_real.c; and (3) an unspecified combination of three values processed by the open_ra_file function in demux_realaudio.c. NOTE: vector 2 reportedly exists because of an incomplete fix in 1.1.15.

Published

2008-11-26T01:30:00.517

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 9.3 (HIGH)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

  • Access Vector: NETWORK
  • Access Complexity: MEDIUM
  • Authentication: NONE
  • Confidentiality Impact: COMPLETE
  • Integrity Impact: COMPLETE
  • Availability Impact: COMPLETE
Exploitability Score

8.6

Impact Score

10.0

Weaknesses
  • Type: Primary
    CWE-119
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application xine xine ≤ 1.1.5 Yes
Application xine xine 0.9.13 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1.0 Yes
Application xine xine 1.0.1 Yes
Application xine xine 1.0.2 Yes
Application xine xine 1.0.3a Yes
Application xine xine 1.1.0 Yes
Application xine xine 1.1.1 Yes
Application xine xine 1.1.2 Yes
Application xine xine 1.1.3 Yes
Application xine xine 1.1.4 Yes
Application xine xine 1.1.10.1 Yes
Application xine xine 1.1.11 Yes
Application xine xine 1.1.11.1 Yes
References