Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-5036HistoryNov 10, 2008 - 10:18 p.m.
CVE-2008-5036
2008-11-1022:18:34
Debian Security Bug Tracker
security-tracker.debian.org
9
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.97 High
EPSS
Percentile
99.8%
Stack-based buffer overflow in VideoLAN VLC media player 0.9.x before 0.9.6 might allow user-assisted attackers to execute arbitrary code via an an invalid RealText (rt) subtitle file, related to the ParseRealText function in modules/demux/subtitle.c. NOTE: this issue was SPLIT from CVE-2008-5032 on 20081110.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | vlc | < 1.0.3-1 | vlc_1.0.3-1_all.deb |
| Debian | 11 | all | vlc | < 1.0.3-1 | vlc_1.0.3-1_all.deb |
| Debian | 10 | all | vlc | < 1.0.3-1 | vlc_1.0.3-1_all.deb |
| Debian | 999 | all | vlc | < 1.0.3-1 | vlc_1.0.3-1_all.deb |
| Debian | 13 | all | vlc | < 1.0.3-1 | vlc_1.0.3-1_all.deb |
Related
openvas
openvas
FreeBSD Ports: vlc
2008-11-19 00:00:00
VLC Media Player Multiple Stack-Based BOF Vulnerabilities - Nov08 (Windows)
2008-11-14 00:00:00
VLC Media Player Multiple Stack-Based BOF Vulnerabilities - Nov08 (Linux)
2008-11-14 00:00:00
debiancve
debiancve
CVE-2008-5032
2008-11-10 16:15:12
cvelist
cvelist
CVE-2008-5032
2008-11-10 16:00:00
CVE-2008-5036
2008-11-10 22:00:00
nvd
nvd
CVE-2008-5032
2008-11-10 16:15:12
CVE-2008-5036
2008-11-10 22:18:34
nessus
nessus
FreeBSD : vlc -- cue processing stack overflow (4b09378e-addb-11dd-a578-0030843d3802)
2008-11-09 00:00:00
VLC Media Player 0.5.0 to 0.9.5 Stack-Based Buffer Overflows
2008-11-10 00:00:00
GLSA-200812-24 : VLC: Multiple vulnerabilities
2008-12-26 00:00:00
ubuntucve
ubuntucve
CVE-2008-5032
2008-11-10 00:00:00
CVE-2008-5036
2008-11-10 00:00:00
cve
cve
CVE-2008-5036
2008-11-10 22:18:34
CVE-2008-5032
2008-11-10 16:15:12
prion
prion
Stack overflow
2008-11-10 16:15:00
Stack overflow
2008-11-10 22:18:00
freebsd
freebsd
vlc -- cue processing stack overflow
2008-11-05 00:00:00
gentoo
gentoo
VLC: Multiple vulnerabilities
2008-12-24 00:00:00
checkpoint_advisories
checkpoint_advisories
VideoLAN VLC Media Player RealText File Buffer Overflow (CVE-2008-5036)
2009-10-01 00:00:00
packetstorm
packetstorm
VLC Media Player RealText Subtitle Overflow
2012-03-03 00:00:00
saint
saint
VLC media player RealText subtitle file ParseRealText buffer overflow
2008-12-01 00:00:00
VLC media player RealText subtitle file ParseRealText buffer overflow
2008-12-01 00:00:00
VLC media player RealText subtitle file ParseRealText buffer overflow
2008-12-01 00:00:00
osv
osv
vlc - several vulnerabilities
2009-06-18 00:00:00
debian
debian
[SECURITY] [DSA 1819-1] New vlc packages fix several vulnerabilities
2009-06-18 13:13:47
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.97 High
EPSS
Percentile
99.8%
Related for DEBIANCVE:CVE-2008-5036