CVE-2008-5259 in DivX Web Playerinfo

Summary

Integer signedness error in DivX Web Player 1.4.2.7, and possibly earlier versions, allows remote attackers to execute arbitrary code via a DivX file containing a crafted Stream Format (STRF) chunk, which triggers a heap-based buffer overflow.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

11/28/2008

Disclosure

04/16/2009

Moderation

VulDB entry created

Entries

VDB-47770 (1)

CPE

ready

CWE

CWE-189 (Confirmed)

CVSS

10.0

EPSS

0.05926

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-5259
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-5259
CVE Details	https://www.cvedetails.com/cve/CVE-2008-5259/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!