Lucene search
HistoryNov 04, 2012 - 3:55 p.m.
CVE-2012-4987
cve-2012-4987
realplayer
buffer overflow
vulnerability
remote code execution
zip file
nvd
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.1 High
AI Score
Confidence
Low
0.202 Low
EPSS
Percentile
96.4%
Stack-based buffer overflow in RealNetworks RealPlayer 15.0.5.109 allows user-assisted remote attackers to execute arbitrary code via a crafted ZIP file that triggers incorrect processing of long pathnames by the Watch Folders feature.
Affected configurations
Node
realnetworksrealplayerMatch15.0.5.109
| CPE | Name | Operator | Version |
|---|---|---|---|
| realnetworks:realplayer | realnetworks realplayer | eq | 15.0.5.109 |
Related
openvas
openvas
RealPlayer Watch Folders Function Buffer Overflow Vulnerability (Windows)
2012-11-06 00:00:00
RealPlayer Watch Folders Function Buffer Overflow Vulnerability - Windows
2012-11-06 00:00:00
securityvulns
securityvulns
RealPlayer buffer overflow
2012-10-28 00:00:00
Realplayer Watchfolders Long Filepath Overflow
2012-10-28 00:00:00
prion
prion
Stack overflow
2012-11-04 15:55:00
cvelist
cvelist
CVE-2012-4987
2012-11-04 15:00:00
nvd
nvd
CVE-2012-4987
2012-11-04 15:55:01
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.1 High
AI Score
Confidence
Low
0.202 Low
EPSS
Percentile
96.4%
Related for CVE-2012-4987