Lucene search
RedhatCVELIST:CVE-2010-0416HistoryFeb 18, 2010 - 11:00 p.m.
CVE-2010-0416
2010-02-1823:00:00
redhat
www.cve.org
4
Buffer overflow in the Unescape function in common/util/hxurl.cpp and player/hxclientkit/src/CHXClientSink.cpp in Helix Player 1.0.6 and RealPlayer allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a URL argument containing a % (percent) character that is not followed by two hex digits.
References
lists.helixcommunity.org/pipermail/common-cvs/2007-July/014956.html
secunia.com/advisories/38450
www.redhat.com/support/errata/RHSA-2010-0094.html
bugzilla.redhat.com/show_bug.cgi?id=561856
helixcommunity.org/viewcvs/common/util/hxurl.cpp?view=log#rev1.24.4.1.4.1
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10847
Related
prion
prion
Buffer overflow
2010-02-18 23:30:00
nvd
nvd
CVE-2010-0416
2010-02-18 23:30:00
cve
cve
CVE-2010-0416
2010-02-18 23:30:00
exploitdb
exploitdb
Helix Player 11.0.2 - Encoded URI Processing Buffer Overflow
2007-07-03 00:00:00
ubuntucve
ubuntucve
CVE-2010-0416
2010-02-18 00:00:00
openvas
openvas
CentOS Update for HelixPlayer CESA-2010:0094 centos4 i386
2010-02-15 00:00:00
RedHat Update for HelixPlayer RHSA-2010:0094-02
2010-02-15 00:00:00
CentOS Update for HelixPlayer CESA-2010:0094 centos4 i386
2010-02-15 00:00:00
nessus
nessus
CentOS 4 : HelixPlayer (CESA-2010:0094)
2010-02-10 00:00:00
Oracle Linux 4 : HelixPlayer (ELSA-2010-0094)
2013-07-12 00:00:00
SuSE 10 Security Update : Realplayer and banshee (ZYPP Patch Number 7122)
2011-01-27 00:00:00
centos
centos
HelixPlayer security update
2010-02-09 17:22:40
oraclelinux
oraclelinux
HelixPlayer security update
2010-02-09 00:00:00
redhat
redhat
(RHSA-2010:0094) Critical: HelixPlayer security update
2010-02-09 00:00:00