[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2008-1482":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T20:55:37.768Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":75,"aliases":110,"duplicate_of":9,"upstream":111,"downstream":112,"duplicates":117,"related":118,"reserved_at":9,"published_at":119,"modified_at":120,"state":121,"summary":122,"references_raw":130,"kevs":245,"epss":246,"epss_history":249,"metrics":506,"affected":511},"CVE-2008-1482","Multiple integer overflows in xine-lib 1.1.11 and earlier allow remote attackers to trigger heap-based buffer overflows and possibly execute arbitrary code via (1) a crafted .FLV file, which triggers an overflow in demuxers/demux_flv.c; (2) a crafted .MOV file, which triggers an overflow in demuxers/demux_qt.c; (3) a crafted .RM file, which triggers an overflow in demuxers/demux_real.c; (4) a crafted .MVE file, which triggers an overflow in demuxers/demux_wc3movie.c; (5) a crafted .MKV file, which triggers an overflow in demuxers/ebml.c; or (6) a crafted .CAK file, which triggers an overflow in demuxers/demux_film.c.",null,[11,68],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],{"_key":69,"id":69,"name":70,"description":71,"type":72,"status":73,"abstraction":9,"likelihood_of_exploit":9,"capec":74},"CWE-189","Numeric Errors","Weaknesses in this category are related to improper calculation or conversion of numbers.","category","Draft",[],[76,85,90,95],{"_key":77,"name":78,"source":79,"url":80,"maturity":81,"reliability_score":82,"verified":83,"type":9,"platforms":84,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_CDFFC131ECC08641","Exploit Reference (aluigi.org)","reference","http://aluigi.org/poc/xinehof.zip","unknown",0.2,false,[],{"_key":86,"name":87,"source":79,"url":88,"maturity":81,"reliability_score":82,"verified":83,"type":9,"platforms":89,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_58985172E745B44C","Exploit Reference (securityfocus.com)","http://www.securityfocus.com/bid/28370",[],{"_key":91,"name":92,"source":79,"url":93,"maturity":81,"reliability_score":82,"verified":83,"type":9,"platforms":94,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_500F9B3081E26E82","Exploit Reference (aluigi.altervista.org)","http://aluigi.altervista.org/adv/xinehof-adv.txt",[],{"_key":96,"name":97,"source":98,"url":99,"maturity":100,"reliability_score":101,"verified":102,"type":103,"platforms":104,"requires_auth":9,"exploitdb":106,"metasploit":9},"31462","Xine-Lib 1.1.11 - Multiple Heap Remote Buffer Overflow Vulnerabilities","exploit-database","https://www.exploit-db.com/exploits/31462","weaponized",0.8,true,"remote",[105],"linux",{"verified":102,"type":103,"platform":105,"file":107,"codes":108},"exploits/linux/remote/31462.c",[7,109],"OSVDB-43527",[],[],[113,115],{"_key":114},"DSA-1586-1",{"_key":116},"DTSA-120-1",[],[],"2008-03-24T22:00:00.000Z","2024-08-07T08:24:42.231Z","Modified",{"cisa_kev":83,"cisa_ransomware":83,"cisa_vendor":9,"epss_severity":123,"epss_score":124,"severity":125,"severity_score":126,"severity_version":127,"severity_source":128,"severity_vector":129,"severity_status":121},"low",0.02024,"medium",6.8,"v2.0","nvd","AV:N/AC:M/Au:N/C:P/I:P/A:P",[131,138,143,149,155,160,165,170,175,179,183,187,191,195,200,205,210,214,219,223,229,232,236,241],{"url":132,"sources":133,"tags":135},"http://www.vupen.com/english/advisories/2008/0981/references",[134,128],"cve.org",[136,137],"VDB Entry","X Refsource VUPEN",{"url":139,"sources":140,"tags":141},"https://bugzilla.redhat.com/show_bug.cgi?id=438663",[134,128],[142],"X Refsource CONFIRM",{"url":144,"sources":145,"tags":146},"http://secunia.com/advisories/29622",[134,128],[147,148],"Third Party Advisory","X Refsource SECUNIA",{"url":150,"sources":151,"tags":152},"http://security.gentoo.org/glsa/glsa-200808-01.xml",[134,128],[153,154],"Vendor Advisory","X Refsource GENTOO",{"url":156,"sources":157,"tags":158},"http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00005.html",[134,128],[153,159],"X Refsource SUSE",{"url":161,"sources":162,"tags":163},"http://securityreason.com/securityalert/3769",[134,128],[147,164],"X Refsource SREASON",{"url":166,"sources":167,"tags":168},"http://www.debian.org/security/2008/dsa-1586",[134,128],[153,169],"X Refsource DEBIAN",{"url":171,"sources":172,"tags":173},"https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00143.html",[134,128],[153,174],"X Refsource FEDORA",{"url":176,"sources":177,"tags":178},"http://secunia.com/advisories/29484",[134,128],[147,148],{"url":180,"sources":181,"tags":182},"http://secunia.com/advisories/29756",[134,128],[147,148],{"url":184,"sources":185,"tags":186},"http://secunia.com/advisories/29600",[134,128],[147,148],{"url":188,"sources":189,"tags":190},"http://secunia.com/advisories/29740",[134,128],[147,148],{"url":192,"sources":193,"tags":194},"http://secunia.com/advisories/31393",[134,128],[147,148],{"url":196,"sources":197,"tags":198},"http://www.mandriva.com/security/advisories?name=MDVSA-2008:178",[134,128],[153,199],"X Refsource MANDRIVA",{"url":80,"sources":201,"tags":202},[134,128],[203,204],"X Refsource MISC","Exploit",{"url":206,"sources":207,"tags":208},"https://exchange.xforce.ibmcloud.com/vulnerabilities/41350",[134,128],[136,209],"X Refsource XF",{"url":211,"sources":212,"tags":213},"https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00157.html",[134,128],[153,174],{"url":215,"sources":216,"tags":217},"http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.441137",[134,128],[153,218],"X Refsource SLACKWARE",{"url":88,"sources":220,"tags":221},[134,128],[136,222,204],"X Refsource BID",{"url":224,"sources":225,"tags":226},"http://www.securityfocus.com/archive/1/489894/100/0/threaded",[134,128],[227,228],"Mailing List","X Refsource BUGTRAQ",{"url":93,"sources":230,"tags":231},[134,128],[203,204],{"url":233,"sources":234,"tags":235},"http://secunia.com/advisories/31372",[134,128],[147,148],{"url":237,"sources":238,"tags":239},"http://www.ubuntu.com/usn/usn-635-1",[134,128],[153,240],"X Refsource UBUNTU",{"url":242,"sources":243,"tags":244},"http://secunia.com/advisories/30337",[134,128],[147,148],[],{"date":247,"score":124,"percentile":248},"2026-06-06",0.84121,[250,254,257,260,263,266,269,272,275,278,281,284,286,289,292,295,298,301,304,307,310,312,314,316,319,321,324,327,330,333,336,339,342,345,347,349,352,355,358,361,364,367,369,372,375,378,381,384,387,390,393,396,399,401,404,407,410,413,415,418,421,424,427,429,431,433,436,439,442,445,448,451,454,457,460,463,466,469,472,475,478,481,484,486,489,492,495,497,500,503],{"date":251,"score":252,"percentile":253},"2025-11-04",0.02123,0.83561,{"date":255,"score":252,"percentile":256},"2025-11-05",0.83567,{"date":258,"score":252,"percentile":259},"2025-11-06",0.83569,{"date":261,"score":252,"percentile":262},"2025-11-07",0.83577,{"date":264,"score":252,"percentile":265},"2025-11-08",0.83581,{"date":267,"score":252,"percentile":268},"2025-11-09",0.83576,{"date":270,"score":252,"percentile":271},"2025-11-10",0.8357,{"date":273,"score":252,"percentile":274},"2025-11-11",0.83575,{"date":276,"score":252,"percentile":277},"2025-11-12",0.83587,{"date":279,"score":252,"percentile":280},"2025-11-13",0.83594,{"date":282,"score":252,"percentile":283},"2025-11-14",0.83595,{"date":285,"score":252,"percentile":277},"2025-11-15",{"date":287,"score":252,"percentile":288},"2025-11-16",0.83588,{"date":290,"score":252,"percentile":291},"2025-11-17",0.83586,{"date":293,"score":252,"percentile":294},"2025-11-18",0.82746,{"date":296,"score":252,"percentile":297},"2025-11-19",0.82747,{"date":299,"score":252,"percentile":300},"2025-11-20",0.8275,{"date":302,"score":252,"percentile":303},"2025-11-21",0.83593,{"date":305,"score":252,"percentile":306},"2025-11-22",0.8359,{"date":308,"score":252,"percentile":309},"2025-11-23",0.83584,{"date":311,"score":252,"percentile":309},"2025-11-24",{"date":313,"score":252,"percentile":265},"2025-11-25",{"date":315,"score":252,"percentile":265},"2025-11-26",{"date":317,"score":252,"percentile":318},"2025-11-27",0.8358,{"date":320,"score":252,"percentile":271},"2025-11-28",{"date":322,"score":252,"percentile":323},"2025-11-29",0.83592,{"date":325,"score":252,"percentile":326},"2025-11-30",0.83596,{"date":328,"score":252,"percentile":329},"2025-12-01",0.83666,{"date":331,"score":252,"percentile":332},"2025-12-02",0.83668,{"date":334,"score":252,"percentile":335},"2025-12-03",0.83671,{"date":337,"score":252,"percentile":338},"2025-12-04",0.83599,{"date":340,"score":252,"percentile":341},"2025-12-05",0.83604,{"date":343,"score":252,"percentile":344},"2025-12-06",0.83601,{"date":346,"score":252,"percentile":280},"2025-12-07",{"date":348,"score":252,"percentile":326},"2025-12-08",{"date":350,"score":252,"percentile":351},"2025-12-09",0.83607,{"date":353,"score":252,"percentile":354},"2025-12-10",0.83627,{"date":356,"score":252,"percentile":357},"2025-12-11",0.83641,{"date":359,"score":252,"percentile":360},"2025-12-12",0.8365,{"date":362,"score":252,"percentile":363},"2025-12-13",0.83645,{"date":365,"score":252,"percentile":366},"2025-12-14",0.83643,{"date":368,"score":252,"percentile":366},"2025-12-15",{"date":370,"score":252,"percentile":371},"2025-12-16",0.83651,{"date":373,"score":252,"percentile":374},"2025-12-17",0.83659,{"date":376,"score":252,"percentile":377},"2025-12-18",0.83665,{"date":379,"score":252,"percentile":380},"2025-12-19",0.83669,{"date":382,"score":252,"percentile":383},"2025-12-20",0.83663,{"date":385,"score":252,"percentile":386},"2025-12-21",0.83662,{"date":388,"score":252,"percentile":389},"2025-12-22",0.8366,{"date":391,"score":252,"percentile":392},"2025-12-23",0.83664,{"date":394,"score":252,"percentile":395},"2025-12-24",0.83674,{"date":397,"score":252,"percentile":398},"2025-12-25",0.8369,{"date":400,"score":252,"percentile":398},"2025-12-26",{"date":402,"score":252,"percentile":403},"2025-12-27",0.83734,{"date":405,"score":252,"percentile":406},"2025-12-28",0.83676,{"date":408,"score":252,"percentile":409},"2025-12-29",0.8367,{"date":411,"score":252,"percentile":412},"2025-12-30",0.83677,{"date":414,"score":252,"percentile":398},"2025-12-31",{"date":416,"score":252,"percentile":417},"2026-01-01",0.83759,{"date":419,"score":252,"percentile":420},"2026-01-02",0.83758,{"date":422,"score":252,"percentile":423},"2026-01-03",0.83752,{"date":425,"score":252,"percentile":426},"2026-01-04",0.83678,{"date":428,"score":252,"percentile":335},"2026-01-05",{"date":430,"score":252,"percentile":426},"2026-01-06",{"date":432,"score":252,"percentile":426},"2026-01-07",{"date":434,"score":252,"percentile":435},"2026-01-08",0.83686,{"date":437,"score":252,"percentile":438},"2026-01-09",0.83687,{"date":440,"score":252,"percentile":441},"2026-01-10",0.83685,{"date":443,"score":124,"percentile":444},"2026-01-11",0.83306,{"date":446,"score":124,"percentile":447},"2026-01-12",0.83302,{"date":449,"score":124,"percentile":450},"2026-01-13",0.83298,{"date":452,"score":124,"percentile":453},"2026-01-14",0.83318,{"date":455,"score":124,"percentile":456},"2026-01-15",0.83317,{"date":458,"score":124,"percentile":459},"2026-01-16",0.83325,{"date":461,"score":124,"percentile":462},"2026-01-17",0.83329,{"date":464,"score":124,"percentile":465},"2026-01-18",0.83326,{"date":467,"score":124,"percentile":468},"2026-01-19",0.83322,{"date":470,"score":124,"percentile":471},"2026-01-20",0.83328,{"date":473,"score":124,"percentile":474},"2026-01-21",0.83334,{"date":476,"score":124,"percentile":477},"2026-01-22",0.8334,{"date":479,"score":124,"percentile":480},"2026-01-23",0.83361,{"date":482,"score":124,"percentile":483},"2026-01-24",0.83368,{"date":485,"score":124,"percentile":480},"2026-01-25",{"date":487,"score":124,"percentile":488},"2026-01-26",0.8336,{"date":490,"score":124,"percentile":491},"2026-01-27",0.83363,{"date":493,"score":124,"percentile":494},"2026-01-28",0.83366,{"date":496,"score":124,"percentile":483},"2026-01-29",{"date":498,"score":124,"percentile":499},"2026-01-30",0.83372,{"date":501,"score":124,"percentile":502},"2026-01-31",0.8338,{"date":504,"score":124,"percentile":505},"2026-02-01",0.83452,[507],{"source":128,"cvss_v2_0":508,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":126,"baseSeverity":9,"vectorString":129,"impactScore":509,"exploitabilityScore":510},6.4,8.6,[512],{"ecosystem":9,"name":513,"vendor":514,"product":513,"cpe_part":515,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":516},"xine-lib","xine","a",[517],{"version":518,"is_range":83,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.1.11","cpe"]