Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2008-5259
Description:Integer signedness error in DivX Web Player 1.4.2.7, and possibly earlier versions, allows remote attackers to execute arbitrary code via a DivX file containing a crafted Stream Format (STRF) chunk, which triggers a heap-based buffer overflow.
Test IDs: 1.3.6.1.4.1.25623.1.0.900537  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2008-5259
BugTraq ID: 34523
http://www.securityfocus.com/bid/34523
Bugtraq: 20090415 Secunia Research: DivX Web Player Stream Format Chunk Buffer Overflow (Google Search)
http://www.securityfocus.com/archive/1/502701/100/0/threaded
http://secunia.com/secunia_research/2008-57/
http://www.securitytracker.com/id?1022061
http://secunia.com/advisories/33196
http://www.vupen.com/english/advisories/2009/1044
XForce ISS Database: divxwebplayer-strf-bo(49908)
https://exchange.xforce.ibmcloud.com/vulnerabilities/49908




© 1998-2024 E-Soft Inc. All rights reserved.