Lucene search

[email protected]CVE-2008-1912

HistoryApr 22, 2008 - 4:41 a.m.

CVE-2008-1912

2008-04-2204:41:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-1912

divx player

buffer overflow

remote code execution

denial of service

nvd

8.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.119 Low

EPSS

Percentile

95.3%

JSON

Stack-based buffer overflow in DivX Player 6.7 build 6.7.0.22 and earlier allows user-assisted remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long subtitle in a .SRT file.

Affected configurations

NVD

Node

divxdivx_playerRange≤6.7build_6.7.0.22

CPENameOperatorVersion
divx:divx_playerdivx divx playerle6.7

CPE	Name	Operator	Version
divx:divx_player	divx divx player	le	6.7

References

secunia.com/advisories/29780

www.securityfocus.com/archive/1/490898/100/0/threaded

www.securityfocus.com/bid/28799

www.securitytracker.com/id?1019921

www.vupen.com/english/advisories/2008/1235/references

www.exploit-db.com/exploits/5453

www.exploit-db.com/exploits/5492

8.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.119 Low

EPSS

Percentile

95.3%

JSON

Related for CVE-2008-1912

prion1 cvelist1 nvd1