Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2008-5238

Integer overflow in the real_parse_mdpr function in demux_real.c in xine-lib 1.1.12, and other versions before 1.1.15, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted stream_name_size field.

Published

2008-11-26T01:30:00.563

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 7.1 (HIGH)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

  • Access Vector: NETWORK
  • Access Complexity: MEDIUM
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: COMPLETE
Exploitability Score

8.6

Impact Score

6.9

Weaknesses
  • Type: Primary
    CWE-189
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application xine xine ≤ 1.1.14 Yes
Application xine xine 0.9.13 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1 Yes
Application xine xine 1.0 Yes
Application xine xine 1.0.1 Yes
Application xine xine 1.0.2 Yes
Application xine xine 1.0.3a Yes
Application xine xine 1.1.0 Yes
Application xine xine 1.1.1 Yes
Application xine xine 1.1.2 Yes
Application xine xine 1.1.3 Yes
Application xine xine 1.1.4 Yes
Application xine xine 1.1.10.1 Yes
Application xine xine 1.1.11 Yes
Application xine xine 1.1.11.1 Yes
References