Unrated severityNVD Advisory· Published Mar 24, 2008· Updated Apr 23, 2026
CVE-2008-0073
CVE-2008-0073
Description
Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
34- sourceforge.net/project/shownotes.phpnvdPatch
- xinehq.de/index.php/newsnvdPatch
- secunia.com/advisories/28694nvdVendor Advisory
- secunia.com/secunia_research/2008-10/nvdVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2008-03/msg00008.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2008-06/msg00001.htmlnvd
- secunia.com/advisories/29392nvd
- secunia.com/advisories/29472nvd
- secunia.com/advisories/29503nvd
- secunia.com/advisories/29578nvd
- secunia.com/advisories/29601nvd
- secunia.com/advisories/29740nvd
- secunia.com/advisories/29766nvd
- secunia.com/advisories/29800nvd
- secunia.com/advisories/30581nvd
- secunia.com/advisories/31372nvd
- secunia.com/advisories/31393nvd
- security.gentoo.org/glsa/glsa-200804-25.xmlnvd
- security.gentoo.org/glsa/glsa-200808-01.xmlnvd
- wiki.videolan.org/Changelog/0.8.6fnvd
- www.debian.org/security/2008/dsa-1536nvd
- www.debian.org/security/2008/dsa-1543nvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.securityfocus.com/bid/28312nvd
- www.securitytracker.com/idnvd
- www.slackware.org/security/viewer.phpnvd
- www.ubuntu.com/usn/usn-635-1nvd
- www.videolan.org/security/sa0803.phpnvd
- www.vupen.com/english/advisories/2008/0923nvd
- www.vupen.com/english/advisories/2008/0985nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/41339nvd
- www.redhat.com/archives/fedora-package-announce/2008-April/msg00143.htmlnvd
- www.redhat.com/archives/fedora-package-announce/2008-March/msg00456.htmlnvd
News mentions
0No linked articles in our index yet.