Lucene search

K
cve[email protected]CVE-2011-1525
HistoryApr 06, 2011 - 4:55 p.m.

CVE-2011-1525

2011-04-0616:55:15
CWE-119
web.nvd.nist.gov
20
realplayer
buffer overflow
code execution
ivr file
cve-2011-1525
nvd

8.1 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.39 Low

EPSS

Percentile

97.3%

Heap-based buffer overflow in rvrender.dll in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.2, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted frame in an Internet Video Recording (IVR) file.

Affected configurations

NVD
Node
realnetworksrealplayerRange14.0.1.633
OR
realnetworksrealplayerMatch4
OR
realnetworksrealplayerMatch5
OR
realnetworksrealplayerMatch6
OR
realnetworksrealplayerMatch7
OR
realnetworksrealplayerMatch8
OR
realnetworksrealplayerMatch10.0
OR
realnetworksrealplayerMatch10.5
OR
realnetworksrealplayerMatch11.0
OR
realnetworksrealplayerMatch11.0.1
OR
realnetworksrealplayerMatch11.0.2
OR
realnetworksrealplayerMatch11.0.2.1744
OR
realnetworksrealplayerMatch11.0.2.2315
OR
realnetworksrealplayerMatch11.0.3
OR
realnetworksrealplayerMatch11.0.4
OR
realnetworksrealplayerMatch11.0.5
OR
realnetworksrealplayerMatch11.1
OR
realnetworksrealplayerMatch11.1.3
OR
realnetworksrealplayerMatch11_build_6.0.14.748
OR
realnetworksrealplayerMatch12.0.0.1444
OR
realnetworksrealplayerMatch12.0.0.1548
OR
realnetworksrealplayerMatch14.0.0
OR
realnetworksrealplayerMatch14.0.1
OR
realnetworksrealplayerMatch14.0.1.609

8.1 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.39 Low

EPSS

Percentile

97.3%

Related for CVE-2011-1525