CVE-2008-5235

NONE EPSS 90.5%
Published Nov 26, 200817y ago · Modified Jun 16, 20262w ago
Find Similar
Published Nov 26, 2008 17y ago
Last Modified Jun 16, 2026 2w ago

Description

Heap-based buffer overflow in the demux_real_send_chunk function in src/demuxers/demux_real.c in xine-lib before 1.1.15 allows remote attackers to execute arbitrary code via a crafted Real Media file. NOTE: some of these details are obtained from third party information.

Threat Intelligence

EPSS Exploit Probability
90.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety

Affected Products 38

VendorProductVersionRange
xinexine* ≤1.1.4
xinexine0.9.13any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1.0any
xinexine1.0.1any
xinexine1.0.2any
xinexine1.0.3aany
xinexine1.1.0any
xinexine1.1.1any
xinexine1.1.2any
xinexine1.1.3any
xinexine1.1.10.1any
xinexine1.1.11any
xinexine1.1.11.1any

References 6

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.