Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2008-3231
HistoryJul 18, 2008 - 4:41 p.m.

CVE-2008-3231

2008-07-1816:41:00
CWE-20
mitre
web.nvd.nist.gov
42
xine-lib
denial of service
vulnerability
ogg file
cve-2008-3231

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

7.1

Confidence

High

EPSS

0.066

Percentile

93.9%

JSON

xine-lib before 1.1.15 allows remote attackers to cause a denial of service (crash) via a crafted OGG file, as demonstrated by playing lol-ffplay.ogg with xine.

Affected configurations

Nvd
Node
xinexine-libRange1.1.14
OR
xinexine-libMatch0.9.8
OR
xinexine-libMatch0.9.13
OR
xinexine-libMatch0.99
OR
xinexine-libMatch1rc0a
OR
xinexine-libMatch1rc1
OR
xinexine-libMatch1rc2
OR
xinexine-libMatch1rc3
OR
xinexine-libMatch1rc3a
OR
xinexine-libMatch1rc3b
OR
xinexine-libMatch1rc3c
OR
xinexine-libMatch1rc4
OR
xinexine-libMatch1rc4a
OR
xinexine-libMatch1rc5
OR
xinexine-libMatch1rc6a
OR
xinexine-libMatch1rc7
OR
xinexine-libMatch1rc8
OR
xinexine-libMatch1.0
OR
xinexine-libMatch1.0.1
OR
xinexine-libMatch1.0.2
OR
xinexine-libMatch1.0.3a
OR
xinexine-libMatch1.1.0
OR
xinexine-libMatch1.1.1
OR
xinexine-libMatch1.1.2
OR
xinexine-libMatch1.1.3
OR
xinexine-libMatch1.1.4
OR
xinexine-libMatch1.1.5
OR
xinexine-libMatch1.1.6
OR
xinexine-libMatch1.1.7
OR
xinexine-libMatch1.1.8
OR
xinexine-libMatch1.1.9
OR
xinexine-libMatch1.1.9.1
OR
xinexine-libMatch1.1.10
OR
xinexine-libMatch1.1.10.1
OR
xinexine-libMatch1.1.11
OR
xinexine-libMatch1.1.11.1
OR
xinexine-libMatch1.1.12
OR
xinexine-libMatch1.1.13
VendorProductVersionCPE
xinexine-lib*cpe:2.3:a:xine:xine-lib:*:*:*:*:*:*:*:*
xinexine-lib0.9.8cpe:2.3:a:xine:xine-lib:0.9.8:*:*:*:*:*:*:*
xinexine-lib0.9.13cpe:2.3:a:xine:xine-lib:0.9.13:*:*:*:*:*:*:*
xinexine-lib0.99cpe:2.3:a:xine:xine-lib:0.99:*:*:*:*:*:*:*
xinexine-lib1cpe:2.3:a:xine:xine-lib:1:rc0a:*:*:*:*:*:*
xinexine-lib1cpe:2.3:a:xine:xine-lib:1:rc1:*:*:*:*:*:*
xinexine-lib1cpe:2.3:a:xine:xine-lib:1:rc2:*:*:*:*:*:*
xinexine-lib1cpe:2.3:a:xine:xine-lib:1:rc3:*:*:*:*:*:*
xinexine-lib1cpe:2.3:a:xine:xine-lib:1:rc3a:*:*:*:*:*:*
xinexine-lib1cpe:2.3:a:xine:xine-lib:1:rc3b:*:*:*:*:*:*
Rows per page:
1-10 of 381

Related

cvelist 1
nvd 1
nessus 10
freebsd 1
openvas 22
prion 1
ubuntucve 1
fedora 5
redhatcve 1
ubuntu 1
gentoo 1
cvelist
cvelist
CVE-2008-3231
2008-07-18 16:00:00
nvd
nvd
CVE-2008-3231
2008-07-18 16:41:00
nessus
nessus
FreeBSD : libxine -- denial of service vulnerability (06eac338-9ddf-11dd-813f-000e35248ad7)
2008-10-20 00:00:00
Mandriva Linux Security Advisory : xine-lib (MDVSA-2009:020)
2009-04-23 00:00:00
Fedora 9 : xine-lib-1.1.15-1.fc9 (2008-7512)
2008-09-10 00:00:00
freebsd
freebsd
libxine -- denial of service vulnerability
2008-07-13 00:00:00
openvas
openvas
FreeBSD Ports: libxine
2008-11-01 00:00:00
FreeBSD Ports: libxine
2008-11-01 00:00:00
Fedora Update for xine-lib FEDORA-2008-7512
2009-02-17 00:00:00
prion
prion
Design/Logic Flaw
2008-07-18 16:41:00
ubuntucve
ubuntucve
CVE-2008-3231
2008-07-18 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: xine-lib-1.1.15-1.fc9
2008-09-10 07:09:25
[SECURITY] Fedora 9 Update: xine-lib-1.1.16.2-1.fc9.1
2009-02-12 20:38:11
[SECURITY] Fedora 9 Update: xine-lib-1.1.16.3-1.fc9
2009-04-09 16:07:39
redhatcve
redhatcve
CVE-2008-3231
2019-10-04 20:14:23
ubuntu
ubuntu
xine-lib vulnerabilities
2009-01-26 00:00:00
gentoo
gentoo
xine-lib: User-assisted execution of arbitrary code
2010-06-01 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

7.1

Confidence

High

EPSS

0.066

Percentile

93.9%

JSON
Related for CVE-2008-3231
cvelist1nvd1nessus10freebsd1openvas22prion1ubuntucve1fedora5redhatcve1ubuntu1gentoo1