Lucene search
HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-2998
cve-2010-2998
realnetworks
realplayer
remote code execution
ivr
array index error
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.017 Low
EPSS
Percentile
88.0%
Array index error in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.0.1 allows remote attackers to execute arbitrary code via malformed sample data in a RealMedia .IVR file, related to a “malformed IVR pointer index” issue.
Affected configurations
Node
realnetworksrealplayerMatch11.0
ORrealnetworksrealplayerMatch11.0.1
ORrealnetworksrealplayerMatch11.0.2
ORrealnetworksrealplayerMatch11.0.3
ORrealnetworksrealplayerMatch11.0.4
ORrealnetworksrealplayerMatch11.0.5
ORrealnetworksrealplayerMatch11.1
Node
realnetworksrealplayer_spMatch1.0.0
ORrealnetworksrealplayer_spMatch1.0.1
Related
nvd
nvd
CVE-2010-2998
2010-10-19 00:00:01
zdi
zdi
cvelist
cvelist
CVE-2010-2998
2022-10-03 16:21:07
prion
prion
Design/Logic Flaw
2010-10-19 00:00:00
openvas
openvas
RealNetworks RealPlayer Multiple Vulnerabilities (Windows) - Dec10
2010-12-29 00:00:00
RealNetworks RealPlayer Multiple Vulnerabilities (Dec 2010) - Windows
2010-12-29 00:00:00
nessus
nessus
Real Networks RealPlayer SP < 1.1.5 Multiple Vulnerabilities
2010-08-27 00:00:00
RealPlayer for Windows < Build 12.0.0.879 Multiple Vulnerabilities
2010-08-27 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.017 Low
EPSS
Percentile
88.0%
Related for CVE-2010-2998