Unrated severityNVD Advisory· Published Nov 10, 2008· Updated Apr 23, 2026
CVE-2008-5032
CVE-2008-5032
Description
Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5 might allow user-assisted attackers to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier originally included an issue related to RealText, but that issue has been assigned a separate identifier, CVE-2008-5036.
Affected products
36cpe:2.3:a:videolan:vlc_media_player:0.5.0:*:*:*:*:*:*:*+ 35 more
- cpe:2.3:a:videolan:vlc_media_player:0.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.7.1a:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.7.2:test2:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.7.2:test3:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.4:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.4a:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.4:test2:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.5:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.5:test3:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.5:test4:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.6:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.6a:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.6b:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.6c:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.6d:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.6e:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.6f:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.6g:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.6h:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.8.6i:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.9:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.9.3:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.9.4:*:*:*:*:*:*:*
- cpe:2.3:a:videolan:vlc_media_player:0.9.5:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- www.trapkit.de/advisories/TKADV2008-012.txtnvdExploit
- secunia.com/advisories/32569nvdVendor Advisory
- secunia.com/advisories/33315nvdVendor Advisory
- www.videolan.org/security/sa0810.htmlnvdVendor Advisory
- security.gentoo.org/glsa/glsa-200812-24.xmlnvd
- www.openwall.com/lists/oss-security/2008/11/05/4nvd
- www.openwall.com/lists/oss-security/2008/11/05/5nvd
- www.openwall.com/lists/oss-security/2008/11/10/13nvd
- www.securityfocus.com/archive/1/498112/100/0/threadednvd
- www.securityfocus.com/bid/32125nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/46375nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14798nvd
News mentions
0No linked articles in our index yet.