Lucene search

MitreCVE-2008-5008

HistoryNov 10, 2008 - 2:12 p.m.

CVE-2008-5008

2008-11-1014:12:56

CWE-119

mitre

web.nvd.nist.gov

cve-2008-5008

buffer overflow

secret rabbit code

src

libsamplerate

nvd

audio file

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

Low

EPSS

0.002

Percentile

64.5%

JSON

Buffer overflow in src/src_sinc.c in Secret Rabbit Code (aka SRC or libsamplerate) before 0.1.4, when “extreme low conversion ratios” are used, allows user-assisted attackers to have an unknown impact via a crafted audio file.

Affected configurations

Nvd

Node

mega-nerdsecret_rabbit_codeRange≤0.1.3

mega-nerdsecret_rabbit_codeMatch0.0.0

mega-nerdsecret_rabbit_codeMatch0.0.2

mega-nerdsecret_rabbit_codeMatch0.0.7

mega-nerdsecret_rabbit_codeMatch0.0.9

mega-nerdsecret_rabbit_codeMatch0.0.11

mega-nerdsecret_rabbit_codeMatch0.0.12

mega-nerdsecret_rabbit_codeMatch0.0.13

mega-nerdsecret_rabbit_codeMatch0.0.14

mega-nerdsecret_rabbit_codeMatch0.0.15

mega-nerdsecret_rabbit_codeMatch0.1.0

mega-nerdsecret_rabbit_codeMatch0.1.1

mega-nerdsecret_rabbit_codeMatch0.1.2

VendorProductVersionCPE
mega-nerdsecret_rabbit_code*cpe:2.3:a:mega-nerd:secret_rabbit_code:*:*:*:*:*:*:*:*
mega-nerdsecret_rabbit_code0.0.0cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.0:*:*:*:*:*:*:*
mega-nerdsecret_rabbit_code0.0.2cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.2:*:*:*:*:*:*:*
mega-nerdsecret_rabbit_code0.0.7cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.7:*:*:*:*:*:*:*
mega-nerdsecret_rabbit_code0.0.9cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.9:*:*:*:*:*:*:*
mega-nerdsecret_rabbit_code0.0.11cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.11:*:*:*:*:*:*:*
mega-nerdsecret_rabbit_code0.0.12cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.12:*:*:*:*:*:*:*
mega-nerdsecret_rabbit_code0.0.13cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.13:*:*:*:*:*:*:*
mega-nerdsecret_rabbit_code0.0.14cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.14:*:*:*:*:*:*:*
mega-nerdsecret_rabbit_code0.0.15cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.15:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mega-nerd	secret_rabbit_code	*	cpe:2.3:a:mega-nerd:secret_rabbit_code::::::::
mega-nerd	secret_rabbit_code	0.0.0	cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.0:::::::*
mega-nerd	secret_rabbit_code	0.0.2	cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.2:::::::*
mega-nerd	secret_rabbit_code	0.0.7	cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.7:::::::*
mega-nerd	secret_rabbit_code	0.0.9	cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.9:::::::*
mega-nerd	secret_rabbit_code	0.0.11	cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.11:::::::*
mega-nerd	secret_rabbit_code	0.0.12	cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.12:::::::*
mega-nerd	secret_rabbit_code	0.0.13	cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.13:::::::*
mega-nerd	secret_rabbit_code	0.0.14	cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.14:::::::*
mega-nerd	secret_rabbit_code	0.0.15	cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.15:::::::*