微慑信息网

CVE-2008-1161-漏洞详情

CVE-2008-1161
CVSS 9.3
发布时间 :2008-03-10 18:44:00
修订时间 :2008-09-10 21:06:55
NMCOPS    

[原文]Buffer overflow in the Matroska demuxer (demuxers/demux_matroska.c) in xine-lib before 1.1.10.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Matroska file with invalid frame sizes.


[CNNVD]xine-lib Matroska Demuxer ‘demuxers/demux_matroska.c’ 缓冲区溢出漏洞(CNNVD-200803-105)

        Xine是Linux系统下播放VCD/DVD的程序。


        xine-lib 1.1.10.1-前的版本下的Matroska demuxer (demuxers/demux_matroska.c)中的缓冲区溢出漏洞,远程攻击者借助带有无效的帧尺寸的Matroska文件,引起拒绝服务攻击(崩溃)以及可能执行任意代码。


CVSS (基础分值)

CVSS分值: 9.3 [严重(HIGH)]
机密性影响: COMPLETE [完全的信息泄露导致所有系统文件暴露]
完整性影响: COMPLETE [系统完整性可被完全破坏]
可用性影响: COMPLETE [可能导致系统完全宕机]
攻击复杂度: MEDIUM [漏洞利用存在一定的访问条件]
攻击向量: NETWORK [攻击者不需要获取内网访问权或本地访问权]
身份认证: NONE [漏洞利用无需身份认证]


CWE (弱点类目)

CWE-119 [内存缓冲区边界内操作的限制不恰当]


CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用


OVAL (用于检测的技术细节)

oval:org.mitre.oval:def:7757 DSA-1536 xine-lib — several vulnerabilities
*OVAL详细的描述了检测该漏洞的方法,你可以从相关的OVAL定义中找到更多检测该漏洞的技术细节。


官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1161

(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-1161

(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200803-105

(官方数据源) CNNVD


其它链接及资源

http://xforce.iss.net/xforce/xfdb/41172


(UNKNOWN)  XF  xinelib-demuxer-bo(41172)
http://www.ubuntu.com/usn/usn-635-1


(UNKNOWN)  UBUNTU  USN-635-1
http://www.mandriva.com/security/advisories?name=MDVSA-2008:178


(UNKNOWN)  MANDRIVA  MDVSA-2008:178
http://secunia.com/advisories/31393


(UNKNOWN)  SECUNIA  31393
http://secunia.com/advisories/29323


(VENDOR_ADVISORY)  SECUNIA  29323
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00004.html


(UNKNOWN)  SUSE  SUSE-SR:2008:006
http://hg.debian.org/hg/xine-lib/xine-lib?cmd=changeset;node=a62d6f482a69;style=gitweb


(UNKNOWN)  CONFIRM  http://hg.debian.org/hg/xine-lib/xine-lib?cmd=changeset;node=a62d6f482a69;style=gitweb
http://www.securityfocus.com/bid/28543


(UNKNOWN)  BID  28543
http://www.debian.org/security/2008/dsa-1536


(UNKNOWN)  DEBIAN  DSA-1536
http://secunia.com/advisories/29601


(UNKNOWN)  SECUNIA  29601


漏洞信息

xine-lib Matroska Demuxer ‘demuxers/demux_matroska.c’ 缓冲区溢出漏洞
高危 缓冲区溢出
2008-03-10 00:00:00 2008-09-11 00:00:00
远程  
        Xine是Linux系统下播放VCD/DVD的程序。


        xine-lib 1.1.10.1-前的版本下的Matroska demuxer (demuxers/demux_matroska.c)中的缓冲区溢出漏洞,远程攻击者借助带有无效的帧尺寸的Matroska文件,引起拒绝服务攻击(崩溃)以及可能执行任意代码。


公告与补丁

        目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:


        Ubuntu Ubuntu Linux 7.10 powerpc


        Ubuntu libxine-dev_1.1.7-1ubuntu1.3_all.deb


        http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.7-1ubuntu1.3_all.deb


漏洞信息 (F69310)

Mandriva Linux Security Advisory 2008-178 (PacketStormID:F69310)

2008-08-22 00:00:00
Mandriva  mandriva.com

advisory,remote,denial of service,overflow,arbitrary

linux,mandriva

CVE-2008-0073,CVE-2008-1110,CVE-2008-1161,CVE-2008-1482,CVE-2008-1878

[点击下载]

Mandriva Linux Security Advisory – Alin Rad Pop found an array index vulnerability in the SDP parser of xine-lib. If a user or automated system were tricked into opening a malicious RTSP stream, a remote attacker could possibly execute arbitrary code with the privileges of the user using the program. The ASF demuxer in xine-lib did not properly check the length of ASF headers. If a user was tricked into opening a crafted ASF file, a remote attacker could possibly cause a denial of service or execute arbitrary code with the privileges of the user using the program. The Matroska demuxer in xine-lib did not properly verify frame sizes, which could possibly lead to the execution of arbitrary code if a user opened a crafted ASF file. Luigi Auriemma found multiple integer overflows in xine-lib. If a user was tricked into opening a crafted FLV, MOV, RM, MVE, MKV, or CAK file, a remote attacker could possibly execute arbitrary code with the privileges of the user using the program. Guido Landi found A stack-based buffer overflow in xine-lib that could allow a remote attacker to cause a denial of service (crash) and potentially execute arbitrary code via a long NSF title. The updated packages have been patched to correct this issue.


漏洞信息 (F68876)

Ubuntu Security Notice 635-1 (PacketStormID:F68876)

2008-08-06 00:00:00
Ubuntu  security.ubuntu.com

advisory,arbitrary,vulnerability,code execution

linux,ubuntu

CVE-2008-0073,CVE-2008-0225,CVE-2008-0238,CVE-2008-0486,CVE-2008-1110,CVE-2008-1161,CVE-2008-1482,CVE-2008-1686,CVE-2008-1878

[点击下载]

Ubuntu Security Notice 635-1 – Many xine-lib arbitrary code execution vulnerabilities have been addressed in Ubuntu.


漏洞信息 (F65079)

Debian Linux Security Advisory 1536-1 (PacketStormID:F65079)

2008-04-02 00:00:00
Debian  debian.org

advisory,denial of service,arbitrary,local,vulnerability,code execution

linux,debian

CVE-2007-1246,CVE-2007-1387,CVE-2008-0073,CVE-2008-0486,CVE-2008-1161

[点击下载]

Debian Security Advisory 1536-1 – Several local vulnerabilities have been discovered in Xine, a media player library, allowed for a denial of service or arbitrary code execution, which could be exploited through viewing malicious content.


漏洞信息


43119
xine-lib Matroska Demuxer demuxers/demux_matroska.c Frame Size Handling Remote Overflow

Remote / Network Access

Input Manipulation
Loss of Integrity
Vendor Verified


漏洞描述


时间线


2008-02-04

Unknow
Unknow Unknow


解决方案

本文标题:CVE-2008-1161-漏洞详情
本文链接:
(转载请附上本文链接)
http://vulsee.com/archives/vulsee_2019/0713_2925.html
转载请附本站链接,未经允许不得转载,,谢谢:微慑信息网-VulSee.com » CVE-2008-1161-漏洞详情
分享到: 更多 (0)

评论 抢沙发

评论前必须登录!

 

微慑信息网 专注工匠精神

访问我们联系我们