Lucene search
HistoryMay 16, 2008 - 12:54 p.m.
CVE-2008-2009
xiph.org
libvorbis
denial of service
vulnerability
cve-2008-2009
nvd
6.6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.031 Low
EPSS
Percentile
91.0%
Xiph.org libvorbis before 1.0 does not properly check for underpopulated Huffman trees, which allows remote attackers to cause a denial of service (crash) via a crafted OGG file that triggers memory corruption during execution of the _make_decode_tree function.
References
Social References
More
Related
cvelist
cvelist
CVE-2008-2009
2008-05-16 06:54:00
ubuntucve
ubuntucve
CVE-2008-2009
2008-05-16 00:00:00
debiancve
debiancve
CVE-2008-2009
2008-05-16 12:54:00
prion
prion
Memory corruption
2008-05-16 12:54:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:23:05
securityvulns
securityvulns
libvorbis library multiple security vulnerabilities
2009-11-25 00:00:00
[USN-861-1] libvorbis vulnerabilities
2009-11-25 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-861-1)
2009-12-03 00:00:00
Ubuntu USN-861-1 (libvorbis)
2009-12-03 00:00:00
CentOS Update for libvorbis CESA-2008:0271-01 centos2 i386
2009-02-27 00:00:00
nessus
nessus
Ubuntu 8.04 LTS / 8.10 / 9.04 / 9.10 : libvorbis vulnerabilities (USN-861-1)
2009-11-25 00:00:00
RHEL 2.1 : libvorbis (RHSA-2008:0271)
2008-05-16 00:00:00
ubuntu
ubuntu
libvorbis vulnerabilities
2009-11-24 00:00:00
redhat
redhat
(RHSA-2008:0271) Important: libvorbis security update
2008-05-14 00:00:00
centos
centos
libvorbis security update
2008-05-16 03:59:20
freebsd
freebsd
libtremor -- multiple vulnerabilities
2008-03-19 00:00:00
6.6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.031 Low
EPSS
Percentile
91.0%
Related for CVE-2008-2009