CVE-2008-1482

xine-lib <= 1.1.11 - Heap-Based Buffer Overflow via Crafted Media Files

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-1482. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary This exploit demonstrates multiple heap-based buffer overflow vulnerabilities in xine-lib 1.1.11 by crafting malicious media files (FLV, MOV, RM, etc.) that trigger overflows when parsed. It includes specific payloads for different file formats to exploit the vulnerabilities.

Description

Multiple integer overflows in xine-lib 1.1.11 and earlier allow remote attackers to trigger heap-based buffer overflows and possibly execute arbitrary code via (1) a crafted .FLV file, which triggers an overflow in demuxers/demux_flv.c; (2) a crafted .MOV file, which triggers an overflow in demuxers/demux_qt.c; (3) a crafted .RM file, which triggers an overflow in demuxers/demux_real.c; (4) a crafted .MVE file, which triggers an overflow in demuxers/demux_wc3movie.c; (5) a crafted .MKV file, which triggers an overflow in demuxers/ebml.c; or (6) a crafted .CAK file, which triggers an overflow in demuxers/demux_film.c.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Luigi Auriemma · cremotelinux
https://www.exploit-db.com/exploits/31462

This exploit demonstrates multiple heap-based buffer overflow vulnerabilities in xine-lib 1.1.11 by crafting malicious media files (FLV, MOV, RM, etc.) that trigger overflows when parsed. It includes specific payloads for different file formats to exploit the vulnerabilities.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: xine-lib <= 1.1.11
No auth needed
Prerequisites: Ability to deliver malicious media files to the target system · Target system must use xine-lib to parse the media files
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (24)

Core 24
Core References
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=438663
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2008:178
Exploit x_refsource_misc
http://aluigi.org/poc/xinehof.zip
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0981/references
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29622
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200808-01.xml
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3769
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2008/dsa-1586
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29484
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29756
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29600
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29740
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31393
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41350
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/28370
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/489894/100/0/threaded
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31372
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-635-1
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/30337

Scores

EPSS 0.0954
EPSS Percentile 94.8%

Details

CWE
CWE-119 CWE-189
Status published
Products (1)
xine/xine-lib 1.1.11
Published Mar 24, 2008
Tracked Since Feb 18, 2026