CVE-2008-5276 - Vulnerability Details - OpenCVE

Integer overflow in the ReadRealIndex function in real.c in the Real demuxer plugin in VideoLAN VLC media player 0.9.0 through 0.9.7 allows remote attackers to execute arbitrary code via a malformed RealMedia (.rm) file that triggers a heap-based buffer overflow.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Videolan	Vlc Media Player

Configuration 1 [-]

OR	cpe:2.3:a:videolan:vlc_media_player:0.9.0:::::::*
	cpe:2.3:a:videolan:vlc_media_player:0.9.1:::::::*
	cpe:2.3:a:videolan:vlc_media_player:0.9.2:::::::*
	cpe:2.3:a:videolan:vlc_media_player:0.9.3:::::::*
	cpe:2.3:a:videolan:vlc_media_player:0.9.4:::::::*
	cpe:2.3:a:videolan:vlc_media_player:0.9.5:::::::*
	cpe:2.3:a:videolan:vlc_media_player:0.9.6:::::::*
	cpe:2.3:a:videolan:vlc_media_player:0.9.7:::::::*
	cpe:2.3:a:videolan:vlc_media_player:0.9.8:::::::*

No data.

References

Link	Providers
http://git.videolan.org/?p=vlc.git%3Ba=commitdiff%3Bh=d19de4e9f2211cbe5bde00726b66c47a424f4e07
http://secunia.com/advisories/32942
http://secunia.com/advisories/33315
http://security.gentoo.org/glsa/glsa-200812-24.xml
http://securityreason.com/securityalert/4680
http://www.osvdb.org/50333
http://www.securityfocus.com/archive/1/498768/100/0/threaded
http://www.securityfocus.com/bid/32545
http://www.trapkit.de/advisories/TKADV2008-013.txt
http://www.videolan.org/security/sa0811.html
http://www.vupen.com/english/advisories/2008/3287
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14793

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-12-03T17:00:00

Updated: 2024-08-07T10:49:11.896Z

Reserved: 2008-11-28T00:00:00

Link: CVE-2008-5276

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2008-12-03T17:30:00.417

Modified: 2025-04-09T00:30:58.490

Link: CVE-2008-5276

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-11-30T00:00:00", "descriptions": [{"lang": "en", "value": "Integer overflow in the ReadRealIndex function in real.c in the Real demuxer plugin in VideoLAN VLC media player 0.9.0 through 0.9.7 allows remote attackers to execute arbitrary code via a malformed RealMedia (.rm) file that triggers a heap-based buffer overflow."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.trapkit.de/advisories/TKADV2008-013.txt"}, {"name": "20081130 [TKADV2008-013] VLC media player RealMedia Processing Integer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/498768/100/0/threaded"}, {"name": "oval:org.mitre.oval:def:14793", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14793"}, {"name": "50333", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/50333"}, {"name": "ADV-2008-3287", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/3287"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://git.videolan.org/?p=vlc.git%3Ba=commitdiff%3Bh=d19de4e9f2211cbe5bde00726b66c47a424f4e07"}, {"name": "32942", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/32942"}, {"name": "32545", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/32545"}, {"name": "4680", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/4680"}, {"name": "33315", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/33315"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.videolan.org/security/sa0811.html"}, {"name": "GLSA-200812-24", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-200812-24.xml"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-5276", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Integer overflow in the ReadRealIndex function in real.c in the Real demuxer plugin in VideoLAN VLC media player 0.9.0 through 0.9.7 allows remote attackers to execute arbitrary code via a malformed RealMedia (.rm) file that triggers a heap-based buffer overflow."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.trapkit.de/advisories/TKADV2008-013.txt", "refsource": "MISC", "url": "http://www.trapkit.de/advisories/TKADV2008-013.txt"}, {"name": "20081130 [TKADV2008-013] VLC media player RealMedia Processing Integer Overflow Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/498768/100/0/threaded"}, {"name": "oval:org.mitre.oval:def:14793", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14793"}, {"name": "50333", "refsource": "OSVDB", "url": "http://www.osvdb.org/50333"}, {"name": "ADV-2008-3287", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/3287"}, {"name": "http://git.videolan.org/?p=vlc.git;a=commitdiff;h=d19de4e9f2211cbe5bde00726b66c47a424f4e07", "refsource": "CONFIRM", "url": "http://git.videolan.org/?p=vlc.git;a=commitdiff;h=d19de4e9f2211cbe5bde00726b66c47a424f4e07"}, {"name": "32942", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/32942"}, {"name": "32545", "refsource": "BID", "url": "http://www.securityfocus.com/bid/32545"}, {"name": "4680", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/4680"}, {"name": "33315", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/33315"}, {"name": "http://www.videolan.org/security/sa0811.html", "refsource": "CONFIRM", "url": "http://www.videolan.org/security/sa0811.html"}, {"name": "GLSA-200812-24", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200812-24.xml"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T10:49:11.896Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.trapkit.de/advisories/TKADV2008-013.txt"}, {"name": "20081130 [TKADV2008-013] VLC media player RealMedia Processing Integer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/498768/100/0/threaded"}, {"name": "oval:org.mitre.oval:def:14793", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14793"}, {"name": "50333", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/50333"}, {"name": "ADV-2008-3287", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2008/3287"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://git.videolan.org/?p=vlc.git%3Ba=commitdiff%3Bh=d19de4e9f2211cbe5bde00726b66c47a424f4e07"}, {"name": "32942", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/32942"}, {"name": "32545", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/32545"}, {"name": "4680", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/4680"}, {"name": "33315", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/33315"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.videolan.org/security/sa0811.html"}, {"name": "GLSA-200812-24", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://security.gentoo.org/glsa/glsa-200812-24.xml"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-5276", "datePublished": "2008-12-03T17:00:00", "dateReserved": "2008-11-28T00:00:00", "dateUpdated": "2024-08-07T10:49:11.896Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:videolan:vlc_media_player:0.9.0:*:*:*:*:*:*:*", "matchCriteriaId": "C13FF305-2547-4E85-9007-0A89F5E34BD4", "vulnerable": true}, {"criteria": "cpe:2.3:a:videolan:vlc_media_player:0.9.1:*:*:*:*:*:*:*", "matchCriteriaId": "3E93836E-E9D1-4180-A589-43602647741C", "vulnerable": true}, {"criteria": "cpe:2.3:a:videolan:vlc_media_player:0.9.2:*:*:*:*:*:*:*", "matchCriteriaId": "B3B32073-DBD5-4344-8498-A132B99807A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:videolan:vlc_media_player:0.9.3:*:*:*:*:*:*:*", "matchCriteriaId": "5330E5C4-BF18-498A-9AE2-1C57E2494AAF", "vulnerable": true}, {"criteria": "cpe:2.3:a:videolan:vlc_media_player:0.9.4:*:*:*:*:*:*:*", "matchCriteriaId": "86D31A16-94EE-45D6-8C54-4F27D466A29E", "vulnerable": true}, {"criteria": "cpe:2.3:a:videolan:vlc_media_player:0.9.5:*:*:*:*:*:*:*", "matchCriteriaId": "117C896C-1C61-440E-B0F4-A871828CD095", "vulnerable": true}, {"criteria": "cpe:2.3:a:videolan:vlc_media_player:0.9.6:*:*:*:*:*:*:*", "matchCriteriaId": "53C17E1A-2E3A-4765-92DE-55CFEE5E4CB0", "vulnerable": true}, {"criteria": "cpe:2.3:a:videolan:vlc_media_player:0.9.7:*:*:*:*:*:*:*", "matchCriteriaId": "117878B7-E04F-400E-8E63-FFC5420978A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:videolan:vlc_media_player:0.9.8:*:*:*:*:*:*:*", "matchCriteriaId": "8815D85E-1556-40A8-9465-0200D720444B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Integer overflow in the ReadRealIndex function in real.c in the Real demuxer plugin in VideoLAN VLC media player 0.9.0 through 0.9.7 allows remote attackers to execute arbitrary code via a malformed RealMedia (.rm) file that triggers a heap-based buffer overflow."}, {"lang": "es", "value": "Desbordamiento de entero en la funci\u00f3n ReadRealIndex en el archivo real.c en el Real demuxer plugin en reproductor multimedia VideoLAN VLC desde la versi\u00f3n 0.9.0 hasta 0.9.7, permite a los atacante remotos ejecutar arbitrariamente c\u00f3digo a trav\u00e9s de ficheros RealMedia (.rm) mal formados que lanzan un desbordamiento de b\u00fafer basado en mont\u00edculo."}], "id": "CVE-2008-5276", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2008-12-03T17:30:00.417", "references": [{"source": "cve@mitre.org", "url": "http://git.videolan.org/?p=vlc.git%3Ba=commitdiff%3Bh=d19de4e9f2211cbe5bde00726b66c47a424f4e07"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/32942"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/33315"}, {"source": "cve@mitre.org", "url": "http://security.gentoo.org/glsa/glsa-200812-24.xml"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/4680"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/50333"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/498768/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/32545"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.trapkit.de/advisories/TKADV2008-013.txt"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.videolan.org/security/sa0811.html"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2008/3287"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14793"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://git.videolan.org/?p=vlc.git%3Ba=commitdiff%3Bh=d19de4e9f2211cbe5bde00726b66c47a424f4e07"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/32942"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/33315"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://security.gentoo.org/glsa/glsa-200812-24.xml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/4680"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/50333"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/498768/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/32545"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.trapkit.de/advisories/TKADV2008-013.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.videolan.org/security/sa0811.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2008/3287"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14793"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-189"}], "source": "nvd@nist.gov", "type": "Primary"}]}