CVE-2008-5238

NONE EPSS 88.2%
Published Nov 26, 200817y ago · Modified Jun 16, 20262w ago
Find Similar
Published Nov 26, 2008 17y ago
Last Modified Jun 16, 2026 2w ago

Description

Integer overflow in the real_parse_mdpr function in demux_real.c in xine-lib 1.1.12, and other versions before 1.1.15, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted stream_name_size field.

Threat Intelligence

EPSS Exploit Probability
88.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-189

Affected Products 39

VendorProductVersionRange
xinexine* ≤1.1.14
xinexine0.9.13any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1any
xinexine1.0any
xinexine1.0.1any
xinexine1.0.2any
xinexine1.0.3aany
xinexine1.1.0any
xinexine1.1.1any
xinexine1.1.2any
xinexine1.1.3any
xinexine1.1.4any
xinexine1.1.10.1any
xinexine1.1.11any
xinexine1.1.11.1any

References 11

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.