Lucene search

[email protected]NVD:CVE-2008-1769

HistoryApr 25, 2008 - 6:05 a.m.

CVE-2008-1769

2008-04-2506:05:00

CWE-399

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.4

Confidence

High

EPSS

0.019

Percentile

88.6%

JSON

VLC before 0.8.6f allow remote attackers to cause a denial of service (crash) via a crafted Cinepak file that triggers an out-of-bounds array access and memory corruption.

Affected configurations

Nvd

Node

videolanvlcMatch0.1.99

videolanvlcMatch0.1.99a

videolanvlcMatch0.1.99b

videolanvlcMatch0.1.99c

videolanvlcMatch0.1.99d

videolanvlcMatch0.1.99e

videolanvlcMatch0.1.99f

videolanvlcMatch0.1.99g

videolanvlcMatch0.1.99h

videolanvlcMatch0.1.99i

videolanvlcMatch0.2.0

videolanvlcMatch0.2.50

videolanvlcMatch0.2.60

videolanvlcMatch0.2.61

videolanvlcMatch0.2.62

videolanvlcMatch0.2.63

videolanvlcMatch0.2.70

videolanvlcMatch0.2.71

videolanvlcMatch0.2.72

videolanvlcMatch0.2.73

videolanvlcMatch0.2.80

videolanvlcMatch0.2.81

videolanvlcMatch0.2.82

videolanvlcMatch0.2.83

videolanvlcMatch0.2.90

videolanvlcMatch0.2.91

videolanvlcMatch0.2.92

videolanvlcMatch0.3.0

videolanvlcMatch0.3.1

videolanvlcMatch0.4.0

videolanvlcMatch0.4.1

videolanvlcMatch0.4.2

videolanvlcMatch0.4.3

videolanvlcMatch0.4.3_ac3

videolanvlcMatch0.4.4

videolanvlcMatch0.4.5

videolanvlcMatch0.4.6

videolanvlcMatch0.5.0

videolanvlcMatch0.5.1

videolanvlcMatch0.5.2

videolanvlcMatch0.5.3

videolanvlcMatch0.6.0

videolanvlcMatch0.6.1

videolanvlcMatch0.6.2

videolanvlcMatch0.7.0

videolanvlcMatch0.7.1

videolanvlcMatch0.7.2

videolanvlcMatch0.8.0

videolanvlcMatch0.8.1

videolanvlcMatch0.8.2

videolanvlcMatch0.8.4

videolanvlcMatch0.8.4a

videolanvlcMatch0.8.5

videolanvlcMatch0.8.6

videolanvlcMatch0.8.6a

videolanvlcMatch0.8.6b

videolanvlcMatch0.8.6c

videolanvlcMatch0.8.6d

videolanvlcMatch0.8.6e

videolanvlcMatch0.8.1337

References

bugs.gentoo.org/show_bug.cgi?id=214627#c3

git.videolan.org/gitweb.cgi/vlc.git/?a=commit%3Bh=cf489d7bff3c1b36b2d5501ecf21129c78104d98

secunia.com/advisories/29503

secunia.com/advisories/29800

security.gentoo.org/glsa/glsa-200804-25.xml

wiki.videolan.org/Changelog/0.8.6f

www.securityfocus.com/bid/28904

www.videolan.org/developers/vlc/NEWS

www.videolan.org/security/sa0803.php

www.vupen.com/english/advisories/2008/0985

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14445

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.4

Confidence

High

EPSS

0.019

Percentile

88.6%

JSON

Related for NVD:CVE-2008-1769

cve1 ubuntucve1 debiancve1 prion1 cvelist1 seebug1 nessus2 openvas4 gentoo1 debian1 osv1