Lucene search

PRIOn knowledge basePRION:CVE-2008-1768

HistoryApr 25, 2008 - 6:05 a.m.

Integer overflow

2008-04-2506:05:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.025 Low

EPSS

Percentile

90.2%

JSON

Multiple integer overflows in VLC before 0.8.6f allow remote attackers to cause a denial of service (crash) via the (1) MP4 demuxer, (2) Real demuxer, and (3) Cinepak codec, which triggers a buffer overflow.

CPENameOperatorVersion
vlceq0.8.0
vlceq0.2.92
vlceq0.8.5
vlceq0.2.80
vlceq0.4.4
vlceq0.7.0
vlceq0.2.71
vlceq0.4.6
vlceq0.2.61
vlceq0.3.1

Name	Operator	Version
vlc	eq	0.8.0
vlc	eq	0.2.92
vlc	eq	0.8.5
vlc	eq	0.2.80
vlc	eq	0.4.4
vlc	eq	0.7.0
vlc	eq	0.2.71
vlc	eq	0.4.6
vlc	eq	0.2.61
vlc	eq	0.3.1

Rows per page:

1-10 of 601

References

secunia.com/advisories/29503

secunia.com/advisories/29800

security.gentoo.org/glsa/glsa-200804-25.xml

wiki.videolan.org/Changelog/0.8.6f

www.securityfocus.com/bid/28903

www.videolan.org/developers/vlc/NEWS

www.videolan.org/security/sa0803.php

www.vupen.com/english/advisories/2008/0985

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14412

7.2 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.025 Low

EPSS

Percentile

90.2%

JSON

Related for PRION:CVE-2008-1768