Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5236

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-5236
Last Modified 07 Mar 2011 10:14:14
Published 25 Nov 2008 08:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-5236

Summary

Multiple heap-based buffer overflows in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allow remote attackers to execute arbitrary code via vectors related to (1) a crafted EBML element length processed by the parse_block_group function in demux_matroska.c; (2) a certain combination of sps, w, and h values processed by the real_parse_audio_specific_data and demux_real_send_chunk functions in demux_real.c; and (3) an unspecified combination of three values processed by the open_ra_file function in demux_realaudio.c. NOTE: vector 2 reportedly exists because of an incomplete fix in 1.1.15.

Vulnerable Systems

Application

  • Xine 0.9.13

  • Xine 1

  • Xine 1.0

  • Xine 1.0.1

  • Xine 1.0.2

  • Xine 1.0.3a

  • Xine 1.1.0

  • Xine 1.1.1

  • Xine 1.1.10.1

  • Xine 1.1.11

  • Xine 1.1.11.1

  • Xine 1.1.2

  • Xine 1.1.3

  • Xine 1.1.4

  • Xine 1.1.5


References

FEDORA - FEDORA-2009-0542

FEDORA - FEDORA-2008-7512

FEDORA - FEDORA-2008-7572

XF - xinelib-openrafile-bo(44642)

XF - xinelib-parseblockgroup-bo(44634)

VUPEN - ADV-2008-2427

VUPEN - ADV-2008-2382

BID - 30797

BUGTRAQ - 20080822 [oCERT-2008-008] multiple heap overflows in xine-lib

OSVDB - 47744

MISC - http://www.ocert.org/analysis/2008-008/analysis.txt

MANDRIVA - MDVSA-2009:020

MISC - http://sourceforge.net/project/shownotes.php?release_id=619869

SREASON - 4648

SECUNIA - 33544

SECUNIA - 31827

SECUNIA - 31567

SECUNIA - 31502

SUSE - SUSE-SR:2009:004


Last Updated: 27 May 2016 10:48:45