Lucene search
HistoryNov 10, 2008 - 2:12 p.m.
CVE-2008-5008
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
Low
EPSS
0.002
Percentile
64.5%
Buffer overflow in src/src_sinc.c in Secret Rabbit Code (aka SRC or libsamplerate) before 0.1.4, when “extreme low conversion ratios” are used, allows user-assisted attackers to have an unknown impact via a crafted audio file.
Affected configurations
Node
mega-nerdsecret_rabbit_codeRange≤0.1.3
ORmega-nerdsecret_rabbit_codeMatch0.0.0
ORmega-nerdsecret_rabbit_codeMatch0.0.2
ORmega-nerdsecret_rabbit_codeMatch0.0.7
ORmega-nerdsecret_rabbit_codeMatch0.0.9
ORmega-nerdsecret_rabbit_codeMatch0.0.11
ORmega-nerdsecret_rabbit_codeMatch0.0.12
ORmega-nerdsecret_rabbit_codeMatch0.0.13
ORmega-nerdsecret_rabbit_codeMatch0.0.14
ORmega-nerdsecret_rabbit_codeMatch0.0.15
ORmega-nerdsecret_rabbit_codeMatch0.1.0
ORmega-nerdsecret_rabbit_codeMatch0.1.1
ORmega-nerdsecret_rabbit_codeMatch0.1.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mega-nerd | secret_rabbit_code | * | cpe:2.3:a:mega-nerd:secret_rabbit_code:*:*:*:*:*:*:*:* |
| mega-nerd | secret_rabbit_code | 0.0.0 | cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.0:*:*:*:*:*:*:* |
| mega-nerd | secret_rabbit_code | 0.0.2 | cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.2:*:*:*:*:*:*:* |
| mega-nerd | secret_rabbit_code | 0.0.7 | cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.7:*:*:*:*:*:*:* |
| mega-nerd | secret_rabbit_code | 0.0.9 | cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.9:*:*:*:*:*:*:* |
| mega-nerd | secret_rabbit_code | 0.0.11 | cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.11:*:*:*:*:*:*:* |
| mega-nerd | secret_rabbit_code | 0.0.12 | cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.12:*:*:*:*:*:*:* |
| mega-nerd | secret_rabbit_code | 0.0.13 | cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.13:*:*:*:*:*:*:* |
| mega-nerd | secret_rabbit_code | 0.0.14 | cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.14:*:*:*:*:*:*:* |
| mega-nerd | secret_rabbit_code | 0.0.15 | cpe:2.3:a:mega-nerd:secret_rabbit_code:0.0.15:*:*:*:*:*:*:* |
Related
gentoo
gentoo
libsamplerate: User-assisted execution of arbitrary code
2008-12-02 00:00:00
redhatcve
redhatcve
CVE-2008-5008
2019-10-04 20:40:49
securityvulns
securityvulns
[ GLSA 200812-05 ] libsamplerate: User-assisted execution of arbitrary code
2008-12-03 00:00:00
libsamplerate buffer overflow
2008-12-03 00:00:00
debiancve
debiancve
CVE-2008-5008
2008-11-10 14:12:56
cvelist
cvelist
CVE-2008-5008
2008-11-10 11:00:00
ubuntucve
ubuntucve
CVE-2008-5008
2008-11-10 00:00:00
nessus
nessus
GLSA-200812-05 : libsamplerate: User-assisted execution of arbitrary code
2008-12-03 00:00:00
Mandriva Linux Security Advisory : libsamplerate (MDVSA-2008:238)
2009-04-23 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200812-05 (libsamplerate)
2008-12-03 00:00:00
Mandriva Update for libsamplerate MDVSA-2008:238 (libsamplerate)
2009-04-09 00:00:00
Mandriva Update for libsamplerate MDVSA-2008:238 (libsamplerate)
2009-04-09 00:00:00
prion
prion
Buffer overflow
2008-11-10 14:12:00
cve
cve
CVE-2008-5008
2008-11-10 14:12:56
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
Low
EPSS
0.002
Percentile
64.5%
Related for NVD:CVE-2008-5008