PT-2008-6377 · Xine · Xine-Lib

Published

2008-11-26

Updated

2011-03-08

CVE-2008-5235

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions xine-lib versions prior to 1.1.15

Description A heap-based buffer overflow issue exists in the demux real send chunk function, located in src/demuxers/demux real.c, which allows remote attackers to execute arbitrary code via a crafted Real Media file.

Recommendations For versions prior to 1.1.15, update to version 1.1.15 or later to resolve the issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2008-5235

Affected Products

Xine-Lib

PT-2008-6377 · Xine · Xine-Lib

CVE-2008-5235

Weakness Enumeration

Related Identifiers

Affected Products

References · 7