Showing 1 - 4 of 4

CVE-2008-0238

Status Candidate

Overview

Multiple heap-based buffer overflows in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 allow remote attackers to execute arbitrary code via the SDP (1) Title, (2) Author, or (3) Copyright attribute, related to the rmff_dump_header function, different vectors than CVE-2008-0225. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Related Files

Ubuntu Security Notice 635-1: Posted Aug 6, 2008; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 635-1 - Many xine-lib arbitrary code execution vulnerabilities have been addressed in Ubuntu.; tags | advisory, arbitrary, vulnerability, code execution; systems | linux, ubuntu; advisories | CVE-2008-0073, CVE-2008-0225, CVE-2008-0238, CVE-2008-0486, CVE-2008-1110, CVE-2008-1161, CVE-2008-1482, CVE-2008-1686, CVE-2008-1878; SHA-256 | 99d390c6edf6c39134bcdba1921abab340fd7b8da4de5350fcc4a3b2f854f9bf; Download | Favorite | View

Mandriva Linux Security Advisory 2008-045: Posted Feb 15, 2008; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory - Multiple heap-based buffer overflow vulnerabilities along with various array index flaws allow for arbitrary code execution in mplayer.; tags | advisory, overflow, arbitrary, vulnerability, code execution; systems | linux, mandriva; advisories | CVE-2008-0225, CVE-2008-0238, CVE-2008-0485, CVE-2008-0486, CVE-2008-0629, CVE-2008-0630; SHA-256 | f1bcf0cf473fccd78e6b2308c1d9435a3aa262e40d0aead2dc19974921211ce7; Download | Favorite | View

Gentoo Linux Security Advisory 200801-12: Posted Jan 28, 2008; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory GLSA 200801-12 - Luigi Auriemma reported that xine-lib does not properly check boundaries when processing SDP attributes of RTSP streams, leading to heap-based buffer overflows. Versions less than 1.1.9.1 are affected.; tags | advisory, overflow; systems | linux, gentoo; advisories | CVE-2008-0225, CVE-2008-0238; SHA-256 | ff977b76bbb0bdb47718d75eee18d9ff51d49e812da39a5fb8750ae7181746f2; Download | Favorite | View

Mandriva Linux Security Advisory 2008-020: Posted Jan 23, 2008; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory - Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and earlier allows remote attackers to execute arbitrary code via the SDP Abstract attribute, related to the rmff_dump_header function and related to disregarding the max field. Multiple heap-based buffer overflows in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 allow remote attackers to execute arbitrary code via the SDP (1) Title, (2) Author, or (3) Copyright attribute, related to the rmff_dump_header function, different vectors than CVE-2008-0225.; tags | advisory, remote, overflow, arbitrary; systems | linux, mandriva; advisories | CVE-2008-0238, CVE-2008-0225; SHA-256 | 2df0ed3c500330133a8e4a0ab61ec8de41ad5a746274fc8172fef51a13274af3; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 304 files
indoushka 142 files
Ubuntu 100 files
Gentoo 32 files
Debian 24 files
LiquidWorm 17 files
Apple 11 files
Google Security Research 8 files
malvuln 8 files
Michael Baer 3 files

File Archives

Systems

AIX (430)
Apple (2,117)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,144)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,599)
HPUX (881)
iOS (391)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,608)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,085)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,928)
UNIX (9,469)
UnixWare (188)
Windows (6,784)
Other

CVE-2008-0238

Overview

Related Files

File Archive:

October 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems