Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-7260
HistoryJan 03, 2014 - 8:55 p.m.

CVE-2013-7260

2014-01-0320:55:06
CWE-119
[email protected]
web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.965 High

EPSS

Percentile

99.6%

JSON

Multiple stack-based buffer overflows in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allow remote attackers to execute arbitrary code via a long (1) version number or (2) encoding declaration in the XML declaration of an RMP file, a different issue than CVE-2013-6877.

Affected configurations

NVD
Node
realnetworksrealplayerRange≀17.0.4.60
OR
realnetworksrealplayerMatch2.1.2enterprise
OR
realnetworksrealplayerMatch2.1.3enterprise
OR
realnetworksrealplayerMatch2.1.4enterprise
OR
realnetworksrealplayerMatch4
OR
realnetworksrealplayerMatch5
OR
realnetworksrealplayerMatch6
OR
realnetworksrealplayerMatch7
OR
realnetworksrealplayerMatch8
OR
realnetworksrealplayerMatch10.0
OR
realnetworksrealplayerMatch10.5
OR
realnetworksrealplayerMatch11.0
OR
realnetworksrealplayerMatch11.0.1
OR
realnetworksrealplayerMatch11.0.2
OR
realnetworksrealplayerMatch11.0.2.1744
OR
realnetworksrealplayerMatch11.0.2.2315
OR
realnetworksrealplayerMatch11.0.3
OR
realnetworksrealplayerMatch11.0.4
OR
realnetworksrealplayerMatch11.0.5
OR
realnetworksrealplayerMatch11.1
OR
realnetworksrealplayerMatch11.1.3
OR
realnetworksrealplayerMatch11_build_6.0.14.748
OR
realnetworksrealplayerMatch12.0.0.1444
OR
realnetworksrealplayerMatch12.0.0.1548
OR
realnetworksrealplayerMatch14.0.0
OR
realnetworksrealplayerMatch14.0.1
OR
realnetworksrealplayerMatch14.0.1.609
OR
realnetworksrealplayerMatch14.0.2
OR
realnetworksrealplayerMatch14.0.3
OR
realnetworksrealplayerMatch14.0.4
OR
realnetworksrealplayerMatch14.0.5
OR
realnetworksrealplayerMatch15.0.0
OR
realnetworksrealplayerMatch15.0.4
OR
realnetworksrealplayerMatch15.0.4.43
OR
realnetworksrealplayerMatch15.0.5.109
OR
realnetworksrealplayerMatch15.0.6.14
OR
realnetworksrealplayerMatch15.02.71
OR
realnetworksrealplayerMatch16.0.0
OR
realnetworksrealplayerMatch16.0.0.282
OR
realnetworksrealplayerMatch16.0.1.18
OR
realnetworksrealplayerMatch16.0.2.32
OR
realnetworksrealplayerMatch16.0.3.51
Node
realnetworksrealplayerMatch10.010.0.0.305mac
OR
realnetworksrealplayerMatch10.010.0.0.331mac
OR
realnetworksrealplayerMatch10.010.0.0.352mac
OR
realnetworksrealplayerMatch10.110.0.0._481mac
OR
realnetworksrealplayerMatch10.110.0.0.396mac
OR
realnetworksrealplayerMatch10.110.0.0.412mac
OR
realnetworksrealplayerMatch12.0.0.1701mac
OR
realnetworksrealplayerMatch12.0.1.1737---macos

Related

cve 2
cvelist 2
prion 2
nvd 1
openvas 1
nessus 1
saint 4
securityvulns 2
coresecurity 1
checkpoint_advisories 2
zdt 2
seebug 2
packetstorm 3
cert 1
exploitpack 1
exploitdb 1
cve
cve
CVE-2013-7260
2014-01-03 20:55:06
CVE-2013-6877
2013-12-19 22:55:04
cvelist
cvelist
CVE-2013-7260
2014-01-03 20:00:00
CVE-2013-6877
2013-12-19 22:00:00
prion
prion
Stack overflow
2014-01-03 20:55:00
Heap overflow
2013-12-19 22:55:00
nvd
nvd
CVE-2013-6877
2013-12-19 22:55:04
openvas
openvas
RealNetworks RealPlayer Buffer Overflow Vulnerability (Dec 2013) - Windows
2013-12-26 00:00:00
nessus
nessus
RealPlayer for Windows < 17.0.4.61 RMP Buffer Overflow
2013-12-31 00:00:00
saint
saint
RealPlayer RMP File Version Attribute Buffer Overflow
2013-12-27 00:00:00
RealPlayer RMP File Version Attribute Buffer Overflow
2013-12-27 00:00:00
RealPlayer RMP File Version Attribute Buffer Overflow
2013-12-27 00:00:00
securityvulns
securityvulns
CORE-2013-0903 - RealPlayer Heap-based Buffer Overflow Vulnerability
2013-12-24 00:00:00
RealPlayer buffer overflow
2013-12-24 00:00:00
coresecurity
coresecurity
RealPlayer Heap-Based Buffer Overflow Vulnerability
2013-12-17 00:00:00
checkpoint_advisories
checkpoint_advisories
RealNetworks RealPlayer RMP File Heap Buffer Overflow (CVE-2013-6877)
2014-01-13 00:00:00
RealNetworks RealPlayer RMP File Stack Buffer Overflow (CVE-2013-6877)
2014-03-16 00:00:00
zdt
zdt
RealNetworks RealPlayer 16.0.3.51/16.0.2.32 - (.rmp) Version Attribute Buffer Overflow
2013-12-24 00:00:00
RealPlayer Heap-based Buffer Overflow Vulnerability
2013-12-19 00:00:00
seebug
seebug
RealPlayer 'RMP'ζ–‡δ»Άε€„η†θΏœη¨‹ε †ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2013-12-18 00:00:00
RealNetworks RealPlayer 16.0.3.51/16.0.2.32 - (.rmp) Version Attribute Buffer Overflow
2014-07-01 00:00:00
packetstorm
packetstorm
RealPlayer Heap-Based Buffer Overflow
2013-12-20 00:00:00
RealNetworks RealPlayer 16 Buffer Overflow
2013-12-25 00:00:00
RealNetworks RealPlayer Version Attribute Buffer Overflow
2013-12-26 00:00:00
cert
cert
RealPlayer version 16.0.3.51 contains a buffer overflow vulnerability
2013-12-30 00:00:00
exploitpack
exploitpack
RealNetworks RealPlayer 16.0.3.5116.0.2.32 - .rmp Version Attribute Buffer Overflow
2013-12-24 00:00:00
exploitdb
exploitdb
RealNetworks RealPlayer 16.0.3.51/16.0.2.32 - &#039;.rmp&#039; Version Attribute Buffer Overflow
2013-12-24 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.965 High

EPSS

Percentile

99.6%

JSON
Related for NVD:CVE-2013-7260
cve2cvelist2prion2nvd1openvas1nessus1saint4securityvulns2coresecurity1checkpoint_advisories2zdt2seebug2packetstorm3cert1exploitpack1exploitdb1