Lucene search

K
ubuntucveUbuntu.comUB:CVE-2008-5235
HistoryNov 26, 2008 - 12:00 a.m.

CVE-2008-5235

2008-11-2600:00:00
ubuntu.com
ubuntu.com
15

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.06 Low

EPSS

Percentile

93.5%

Heap-based buffer overflow in the demux_real_send_chunk function in
src/demuxers/demux_real.c in xine-lib before 1.1.15 allows remote attackers
to execute arbitrary code via a crafted Real Media file. NOTE: some of
these details are obtained from third party information.

Notes

Author Note
mdeslaur this looks like 1C

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.06 Low

EPSS

Percentile

93.5%